Overview
- SourceCodester
- Class and Exam Timetabling System
Description
Statistics
- 1 Post
Fediverse
CVE-2026-16228: MEDIUM-severity SQL injection in SourceCodester Class and Exam Timetabling System 1.0 (/edit_schoolyr.php). Remote, unauthenticated exploitation possible. No patch — apply input validation & parameterized queries. https://radar.offseq.com/threat/cve-2026-16228-sql-injection-in-sourcecodester-class-and-exam-timetabling-system-032a2d253dffeeae #OffSeq #SQLInjection #AppSec
Overview
- SourceCodester
- Class and Exam Timetabling System
Description
Statistics
- 1 Post
Fediverse
CVE-2026-16227: SQL injection in SourceCodester Class and Exam Timetabling System v1.0 (/edit_subject.php, ID param). MEDIUM severity (CVSS 6.9). No patch yet — use input validation & parameterized queries. https://radar.offseq.com/threat/cve-2026-16227-sql-injection-in-sourcecodester-class-and-exam-timetabling-system-bf78ed5f513695ba #OffSeq #SQLInjection #AppSec #Vuln
Overview
- FalkorDB
- QueryWeaver
Description
Statistics
- 1 Post
Fediverse
CVE-2026-10130 (HIGH, CVSS 8.2) in FalkorDB QueryWeaver: attackers can bypass authentication and obtain session tokens for existing accounts by submitting signup requests with known emails. Review signup flows. https://radar.offseq.com/threat/cve-2026-10130-cwe-863-incorrect-authorization-in-falkordb-queryweaver-b58c3b7d941d0845 #OffSeq #Vulnerability #FalkorDB #Infosec
Overview
- itsourcecode
- Courier Management System
Description
Statistics
- 1 Post
Fediverse
CVE-2026-16229 (MEDIUM, CVSS 5.3): XSS in itsourcecode Courier Management System v1.0 via 'page' param in /index.php. Remote exploitation possible, user interaction needed. No patch yet — use WAF and input validation. https://radar.offseq.com/threat/cve-2026-16229-cross-site-scripting-in-itsourcecode-courier-management-system-ed5bf04aced8e4b0 #OffSeq #XSS #Vuln