CVE-2026-7194 SourceCodester Pharmacy Sales and Inventory System ajax.php sql injection

A weakness has been identified in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=saveproduct. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

ECHO-7194-1339-FD86

Bulletin has no description...

CVE-2020-7194

A perfaddormoddevicemonitor expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center iMC versions: Prior to iMC PLAT 7.3 E0705P07...

CVE-2025-7194

creationtimestamp| type| source ---|---|--- 2025-07-07 09:12:08+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114811176780318927 2025-07-09 00:19:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltik6icyv32e 2025-08-06 01:04:19+00:00| seen|...

CVE-2024-7194

A vulnerability was found in itsourcecode Society Management System 1.0 and classified as critical. This issue affects some unknown processing of the file checkstudent.php. The manipulation of the argument studentid leads to sql injection. The attack may be initiated remotely. The exploit has bee...

QNAP QTS and Photo Station Local File Inclusion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'QNAP QTS and Photo Station Local File Inclusion', 'Description' = %q This module exploits a local file inclusion in QNAP QTS and Photo Station th...

CVE-2024-7194

creationtimestamp| type| source ---|---|--- 2024-07-29 12:56:54+00:00| seen| https://t.me/cvedetector/1834...

CVE-2024-7194

A vulnerability was found in itsourcecode Society Management System 1.0 and classified as critical. This issue affects some unknown processing of the file checkstudent.php. The manipulation of the argument studentid leads to sql injection. The attack may be initiated remotely. The exploit has bee...

CVE-2024-7194 itsourcecode Society Management System check_student.php sql injection

A vulnerability was found in itsourcecode Society Management System 1.0 and classified as critical. This issue affects some unknown processing of the file checkstudent.php. The manipulation of the argument studentid leads to sql injection. The attack may be initiated remotely. The exploit has bee...

CVE-2024-7194

CVE-2024-7194 affects itsourcecode Society Management System 1.0. The vulnerability arises in the file processing of check_student.php, where manipulation of the student_id parameter leads to an SQL injection. The issue is exploitable remotely and has been disclosed publicly. A range of sources (...

CVE-2023-7194

creationtimestamp| type| source ---|---|--- 2024-01-22 21:31:34+00:00| seen| https://t.me/ctinow/171450 2024-02-16 11:16:33+00:00| seen| https://t.me/ctinow/186268...

CVE-2023-7194

The Meris WordPress theme through 1.1.2 does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2023-7194 Meris <= 1.1.2 - Reflected XSS

The Meris WordPress theme through 1.1.2 does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2023-7194

The Meris WordPress theme (versions up to 1.1.2) is susceptible to Reflected XSS because it does not sanitize/escape certain parameters before output. This could affect high-privilege accounts (e.g., admins). Public details confirm the issue and point to a fix in newer versions; monitoring is adv...

CVE-2023-7194 Meris <= 1.1.2 - Reflected XSS

The Meris WordPress theme through 1.1.2 does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

SUSE: Security Advisory (SUSE-SU-2015:1981-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:1978-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:1926-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

QNAP Photo Station Remote Code Execution (CVE-2019-7192; CVE-2019-7193; CVE-2019-7194; CVE-2019-7195)

A remote code execution vulnerability exists in QNAP NAS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

CVE-2020-7194

A perfaddormoddevicemonitor expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center iMC versions: Prior to iMC PLAT 7.3 E0705P07...