Vulnerability Database
A comprehensive hub for tracking high-impact vulnerabilities across application code and third-party libraries, for security teams and developers.
Trusted by Startups to Fortune 500
CVE-2026-10186
(7.3)
SQL Injection (CWE-89) in Online Hospital Management System /patient.php editid Parameter
Unauthorized Database Access and Data Manipulation
CVE-2026-10185
(7.3)
SQL Injection via ID Parameter (CWE-89) in Users Save Endpoint of Hospital Patient Records System
Unauthorized Database Access and Data Manipulation
CVE-2026-10184
(7.3)
SQL Injection (CWE-89) in Users Deletion Endpoint of Hospital Patient Records Management System
Database Compromise and Data Integrity Loss
CVE-2026-49490
(8.1)
SQL Injection (CWE-89) in OpenCATS DataGrid Filter Handling
Arbitrary SQL Query Execution Against Application Database
CVE-2026-49489
(8.5)
SQL Injection (CWE-89) in OpenCATS DataGrid sortDirection Parameter
Sensitive Data Exposure via Authenticated SQL Injection
CVE-2026-10178
(7.3)
SQL Injection (CWE-89) in AdminEditAlbum.php of Online Music Site
Data Exposure and Modification via SQL Injection
CVE-2026-10167
(7.3)
Improper Authentication (CWE-287) in BrinaryBrains School Student Management System MY_Controller
Authentication Bypass / Privilege Escalation
CVE-2026-10157
(7.3)
Improper Authentication (CWE-287) in Open5GS NGAP PathSwitchRequest Handler
Unauthorized Network Signaling / Session Manipulation
CVE-2018-25422
(8.2)
SQL Injection (CWE-89) in MOGG Web Simulator Script `play.php`
Data Exposure and Arbitrary SQL Execution
CVE-2026-10111
(7.3)
SQL Injection (CWE-89) in sambitraj STUDENT-MANAGEMENT-SYSTEM Login Page
Authentication Bypass and Data Compromise via SQL Injection
