Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
23570
Total
1678
Critical
7413
High
7498
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-14658 | MEDIUM | 6.3 | A vulnerability was detected in code-projects Assessment Management 1.0. This vulnerability affects unknown code of the file /lecturer/marking-scheme.php. The manipulation of the argument smarksrange[] results … | Jul 04, 2026 |
| CVE-2026-14657 | MEDIUM | 6.3 | A flaw has been found in code-projects Assessment Management 1.0. This issue affects some unknown processing of the file /lecturer/marking-scheme.php of the component Database Query … | Jul 04, 2026 |
| CVE-2026-14656 | MEDIUM | 4.3 | A security vulnerability has been detected in code-projects Assessment Management 1.0. This affects an unknown part of the file /admin/remove-user.php. The manipulation of the argument … | Jul 04, 2026 |
| CVE-2026-14655 | LOW | 2.4 | A weakness has been identified in code-projects Assessment Management 1.0. Affected by this issue is some unknown functionality of the file admin/view-users.php. Executing a manipulation … | Jul 04, 2026 |
| CVE-2026-14654 | HIGH | 7.3 | A vulnerability was identified in SourceCodester Simple and Nice Shopping Cart Script 1.0. Affected is an unknown function of the file /admin/girlsproductdeletequery.php. Such manipulation of … | Jul 04, 2026 |
| CVE-2026-14653 | HIGH | 7.3 | A vulnerability was determined in SourceCodester Simple and Nice Shopping Cart Script 1.0. This impacts an unknown function of the file /admin/mensproductdeletequery.php. This manipulation of … | Jul 04, 2026 |
| CVE-2026-14652 | HIGH | 7.3 | A vulnerability was found in SourceCodester Simple and Nice Shopping Cart Script 1.0. This affects an unknown function of the file /admin/login.php of the component … | Jul 04, 2026 |
| CVE-2026-14651 | LOW | 3.3 | A vulnerability has been found in connorskees grass up to 0.13.4. The impacted element is the function grass_compiler::selector::extend/grass_compiler::evaluate::visitor. The manipulation leads to denial of service. … | Jul 04, 2026 |
| CVE-2024-1248 | MEDIUM | 4.8 | The silent Just-In-Time (JIT) provisioning feature in federated authentication implementations fails to properly segregate user roles during account creation when a federated user shares a … | Jul 04, 2026 |
| CVE-2026-14650 | LOW | 3.3 | A flaw has been found in connorskees grass up to 0.13.4. The affected element is the function grass_compiler::raw_to_parse_error of the component UTF-8 Character Handler. Executing … | Jul 04, 2026 |
| CVE-2026-14649 | HIGH | 7.3 | A vulnerability was detected in code-projects Online Voting System 1.0. Impacted is the function test_input of the file /saveVote.php. Performing a manipulation of the argument … | Jul 04, 2026 |
| CVE-2026-14648 | HIGH | 7.3 | A security vulnerability has been detected in code-projects Online Voting System up to 0.x/1.0. This issue affects the function test_input of the file /authentication.php of … | Jul 04, 2026 |
| CVE-2026-14647 | MEDIUM | 4.3 | A weakness has been identified in onnx up to 1.21.x. This vulnerability affects the function convPoolShapeInference_opset19 of the file onnx/defs/nn/old.cc of the component onnxruntime. This … | Jul 04, 2026 |
| CVE-2026-14642 | HIGH | 7.3 | A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. Affected by this issue is some unknown functionality of the file /edit_class2.php. The … | Jul 04, 2026 |
| CVE-2026-14641 | HIGH | 7.3 | A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0. Affected by this vulnerability is an unknown functionality of the file /edit_course.php. Executing … | Jul 04, 2026 |
| CVE-2026-14640 | HIGH | 7.3 | A vulnerability was found in CodeAstro Apartment Visitor Management System 1.0. Affected is an unknown function of the file /index.php of the component Login. Performing … | Jul 04, 2026 |
| CVE-2026-14639 | MEDIUM | 6.3 | A vulnerability has been found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /ecommerce-website-php/customer/my_account.php?edit_account. Such manipulation of the argument c_name … | Jul 04, 2026 |
| CVE-2026-14638 | MEDIUM | 6.3 | A flaw has been found in itsourcecode Hospital Management System 1.0. This affects an unknown function of the file /patient.php. This manipulation of the argument … | Jul 04, 2026 |
| CVE-2026-14637 | HIGH | 8.2 | A security vulnerability has been detected in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 13fd582aaf49aeab7438acc0fc3eb973a1f5e6a7. The affected element is the function getCartItems in the library application/libraries/ShoppingCart.php. The manipulation … | Jul 04, 2026 |
| CVE-2026-12746 | UNKNOWN | — | Dancer2::Plugin::Auth::OAuth::Provider versions before 0.23 for Perl do not support the OAuth 2.0 state parameter. The authentication_url method builds the provider authorization redirect without issuing a … | Jul 04, 2026 |
| CVE-2026-12740 | UNKNOWN | — | Plack::Middleware::OAuth versions through 0.10 for Perl do not support the OAuth 2.0 state parameter. RequestTokenV2 builds the provider authorization redirect without issuing a state value, … | Jul 04, 2026 |
| CVE-2026-14636 | MEDIUM | 5.4 | A weakness has been identified in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 23105f25dadf57b4314fc015a63a7c6e910c89df. Impacted is the function do_upload_others_images of the file application/modules/vendor/controllers/AddProduct.php of the component Vendor Image … | Jul 04, 2026 |
| CVE-2026-14635 | HIGH | 7.3 | A security flaw has been discovered in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 222ff31c06687b1c6d0e1ab63953f82c3674c52b. This issue affects some unknown processing of the file application/modules/vendor/controllers/AddProduct.php of the component … | Jul 04, 2026 |
| CVE-2026-14634 | MEDIUM | 4.3 | A vulnerability was identified in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 213babdbaa949e94557246414db0130e01394517. This vulnerability affects the function checkForPostRequests of the file application/core/MY_Controller.php of the component Subscribed Emails … | Jul 04, 2026 |
| CVE-2026-14633 | MEDIUM | 4.3 | A vulnerability was determined in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 49b20f53de2b7ec34e920b11c863f1491d911a04. This affects an unknown part of the file /index.php/api/product/set of the component Hidden REST API … | Jul 04, 2026 |