Submit #796697: code-projects Simple ChatBox In PHP 1.0 SQL Injection [Accepted]
Submit #796697 / VDB-357041
Aggregator
Submit #796696: code-projects Simple Chatbox PHP 1.0 Information Disclosure [Accepted]
2 weeks 2 days ago
Submit #796696 / VDB-357040
AhmadMarzook
Submit #796666: code-projects Simple ChatBox In PHP 1.0 Cross Site Scripting [Accepted]
2 weeks 2 days ago
Submit #796666 / VDB-357039
AhmadMarzook
CVE-2026-6154 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi setWizardCfg wizard os command injection
2 weeks 2 days ago
A vulnerability was found in Totolink A7100RU 7.4cu.2313_b20191024. It has been classified as critical. The affected element is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wizard results in os command injection.
This vulnerability was named CVE-2026-6154. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com
Submit #796665: code-projects Simple Laundry System In PHP 1.0 SQL Injection [Duplicate]
2 weeks 2 days ago
Submit #796665 / VDB-355334
AhmadMarzook
Submit #796426: TOTOLINK N300RH_V4 V6.1c.1353_B20190305 OS Command Injection [Accepted]
2 weeks 2 days ago
Submit #796426 / VDB-357038
xuanyu
Submit #793114: TOTOLINK A800R V4.1.2cu.5137_B20200730 Buffer Overflow [Accepted]
2 weeks 2 days ago
Submit #793114 / VDB-357037
xuanyu
Submit #793681: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
2 weeks 2 days ago
Submit #793681 / VDB-357036
LtzHust2
Submit #793679: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
2 weeks 2 days ago
Submit #793679 / VDB-357035
LtzHust2
Submit #793668: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Duplicate]
2 weeks 2 days ago
Submit #793668 / VDB-356548
LtzHust2
Submit #792990: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
2 weeks 2 days ago
Submit #792990 / VDB-357034
LtzHuster
CVE-2026-6153 | code-projects Vehicle Showroom Management System 1.0 StaffDetailsFunction.php STAFF_ID sql injection
2 weeks 2 days ago
A vulnerability was found in code-projects Vehicle Showroom Management System 1.0 and classified as critical. Impacted is an unknown function of the file /util/StaffDetailsFunction.php. Such manipulation of the argument STAFF_ID leads to sql injection.
This vulnerability is uniquely identified as CVE-2026-6153. The attack can be launched remotely. Moreover, an exploit is present.
vuldb.com
CVE-2026-6152 | code-projects Vehicle Showroom Management System 1.0 StaffAddingFunction.php STAFF_ID sql injection
2 weeks 2 days ago
A vulnerability has been found in code-projects Vehicle Showroom Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /util/StaffAddingFunction.php. This manipulation of the argument STAFF_ID causes sql injection.
This vulnerability is handled as CVE-2026-6152. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com
CVE-2026-6151 | code-projects Vehicle Showroom Management System 1.0 PaymentStatusFunction.php CUSTOMER_ID sql injection
2 weeks 2 days ago
A vulnerability, which was classified as critical, was found in code-projects Vehicle Showroom Management System 1.0. This vulnerability affects unknown code of the file /util/PaymentStatusFunction.php. The manipulation of the argument CUSTOMER_ID results in sql injection.
This vulnerability is known as CVE-2026-6151. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com
CVE-2026-6150 | code-projects Simple Laundry System 1.0 /checkupdatestatus.php serviceId cross site scripting
2 weeks 2 days ago
A vulnerability, which was classified as problematic, has been found in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /checkupdatestatus.php. The manipulation of the argument serviceId leads to cross site scripting.
This vulnerability is traded as CVE-2026-6150. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2026-6149 | code-projects Vehicle Showroom Management System 1.0 BookVehicleFunction.php BRANCH_ID sql injection
2 weeks 2 days ago
A vulnerability classified as critical was found in code-projects Vehicle Showroom Management System 1.0. Affected by this issue is some unknown functionality of the file /util/BookVehicleFunction.php. Executing a manipulation of the argument BRANCH_ID can lead to sql injection.
This vulnerability appears as CVE-2026-6149. The attack may be performed from remote. In addition, an exploit is available.
vuldb.com
CVE-2026-6148 | code-projects Vehicle Showroom Management System 1.0 MonthTotalReportUpdateFunction.php BRANCH_ID sql injection
2 weeks 2 days ago
A vulnerability classified as critical has been found in code-projects Vehicle Showroom Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /util/MonthTotalReportUpdateFunction.php. Performing a manipulation of the argument BRANCH_ID results in sql injection.
This vulnerability is reported as CVE-2026-6148. The attack is possible to be carried out remotely. Moreover, an exploit is present.
vuldb.com
Top 3 takeaways for security leaders
2 weeks 2 days ago
Red Canary, a Zscaler company
Submit #796315: code-projects Vehicle Showroom Management System V1.0 SQL injection [Accepted]
2 weeks 2 days ago
Submit #796315 / VDB-357033
huahuan
Submit #796312: code-projects Vehicle Showroom Management System V1.0 SQL injection [Accepted]
2 weeks 2 days ago
Submit #796312 / VDB-357032
huahuan