69 matches found
CVE-2026-30558
A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addcustomer.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HT...
EUVD-2026-17097
A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addcustomer.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HT...
SourceCodester Sales and Inventory System 安全漏洞
The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a security vulnerability. This vulnerability stems from improper cleaning of the parameter msg i...
CVE-2026-30558
A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addcustomer.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HT...
PT-2026-29040
A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add customer.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or...
CVE-2026-2850
A vulnerability was found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function addCustomer/updateCustomer/deleteCustomer of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\CustomerController.java of the component Customer Endpoint...
CVE-2026-2850
A vulnerability was found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function addCustomer/updateCustomer/deleteCustomer of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\CustomerController.java of the component Customer Endpoint...
CVE-2026-2850
A vulnerability was found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function addCustomer/updateCustomer/deleteCustomer of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\CustomerController.java of the component Customer Endpoint...
warehouse 访问控制错误漏洞
Warehouse is a small-scale warehouse logistics management system developed by Yeqifu’s individual developer, based on Spring Boot. There is an access control vulnerability in Warehouse. This vulnerability stems from improper access control issues in the functions addCustomer, updateCustomer, and...
CVE-2025-63447
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addcustomer.php...
EUVD-2025-37496
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addcustomer.php...
CVE-2025-63447
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addcustomer.php...
CVE-2025-63447
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addcustomer.php...
CVE-2025-63447
Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /addcustomer.php...
PT-2025-44774
Name of the Vulnerable Software and Affected Versions Water Management System version 1.0 Description Water Management System version 1.0 is susceptible to Cross Site Scripting XSS attacks. The issue is located in the /add customer.php endpoint. The vulnerability allows attackers to inject...
CVE-2025-63447
Water Management System v1.0 is affected by a Cross Site Scripting (XSS) vulnerability in the /add_customer.php endpoint. The issue is documented across multiple sources (NVD, Red Hat, EUVD, CIRCL, CVE list, CNNVD) and is generally described as an XSS in that endpoint. The root cause is not expli...
Water-Management-System 安全漏洞
Water-Management-System is an inventory management system by the individual developer Dikshant Naik. A security vulnerability exists in Water-Management-System version 1.0, which originates from a cross-site scripting vulnerability in the file /addcustomer.php...
CVE-2025-11333
A vulnerability was identified in langleyfcu Online Banking System up to 57437e6400ce0ae240e692c24e6346b8d0c17d7a. This impacts an unknown function of the file /customeraddaction.php of the component Add Customer Page. The manipulation of the argument First Name leads to cross site scripting...
CVE-2025-11333 langleyfcu Online Banking System Add Customer customer_add_action.php cross site scripting
A vulnerability was identified in langleyfcu Online Banking System up to 57437e6400ce0ae240e692c24e6346b8d0c17d7a. This impacts an unknown function of the file /customeraddaction.php of the component Add Customer Page. The manipulation of the argument First Name leads to cross site scripting...
CVE-2025-11333
CVE-2025-11333 affects langleyfcu Online Banking System up to version 57437e6400ce0ae240e692c24e6346b8d0c17d7a, specifically the Add Customer Page file /customer_add_action.php. The vulnerability arises from manipulation of the First Name parameter, causing cross-site scripting. Remote exploitati...