6.5
CVE-2025-13679 - Tutor LMS <= 3.9.3 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Expβ¦
The Tutor LMS β eLearning and online course solution plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the get_order_by_id() function in all versions up to, and including, 3.9.3. This makes it possible for authenticated attackers, with Subscriberβ¦
6.9
CVE-2026-0700 - code-projects Intern Membership Management System check_admin.php sql injection
A vulnerability was determined in code-projects Intern Membership Management System 1.0. Affected is an unknown function of the file /intern/admin/check_admin.php. Executing a manipulation of the argument Username can lead to sql injection. The attack can be executed remotely. The exploit has been β¦
0.0
CVE-2026-22635 -
Not used
0.0
CVE-2026-22634 -
Not used
0.0
CVE-2026-22636 -
Not used
0.0
CVE-2026-22631 -
Not used
0.0
CVE-2026-22633 -
Not used
0.0
CVE-2026-22632 -
Not used
0.0
CVE-2026-22630 -
Not used
5.1
CVE-2026-0699 - code-projects Intern Membership Management System edit_activity.php sql injection
A vulnerability was found in code-projects Intern Membership Management System 1.0. This impacts an unknown function of the file /intern/admin/edit_activity.php. Performing a manipulation of the argument activity_id results in sql injection. Remote exploitation of the attack is possible. The exploiβ¦