Lucene search
K

35 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/27 12:0 a.m.1 views

CVE-2026-30576

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file. The application fails to validate the "txtprice" and "txttotalcost" parameters during stock entry, allowing negative financial values to be submitted. This leads to corruption...

5.8AI score0.00256EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/27 12:0 a.m.1 views

CVE-2026-30575

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file. The application fails to validate the "txtqty" parameter during stock entry, allowing negative values to be processed. This causes the system to decrease the inventory level...

5.8AI score0.00421EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/27 12:0 a.m.2 views

CVE-2026-30576

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file. The application fails to validate the "txtprice" and "txttotalcost" parameters during stock entry, allowing negative financial values to be submitted. This leads to corruption...

5.8AI score0.00256EPSS
Exploits1References1
CVE
CVE
added 2026/03/27 12:0 a.m.13 views

CVE-2026-30575

SourceCodester Pharmacy Product Management System 1.0 exposes a business logic flaw in add-stock.php: the txtqty parameter is not validated, allowing negative values to be processed and decreasing inventory instead of increasing it. This causes inventory corruption and potential DoS by depleting ...

7.5CVSS5.8AI score0.00421EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/27 12:0 a.m.2 views

CVE-2026-30575

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file. The application fails to validate the "txtqty" parameter during stock entry, allowing negative values to be processed. This causes the system to decrease the inventory level...

5.8AI score0.00421EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.7 views

PT-2026-28415

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file. The application fails to validate the "txtprice" and "txttotalcost" parameters during stock entry, allowing negative financial values to be submitted. This leads to corruption...

7.5CVSS5.8AI score0.00256EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/08 6:30 p.m.7 views

EUVD-2026-10257

A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown function of the file /addstock.php. Performing a manipulation of the argument cost results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

6.5CVSS6.5AI score0.00301EPSS
Exploits1References6
NVD
NVD
added 2026/03/08 6:15 p.m.3 views

CVE-2026-3754

A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown function of the file /addstock.php. Performing a manipulation of the argument cost results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

8.8CVSS0.00301EPSS
Exploits1References5
OSV
OSV
added 2026/03/08 6:15 p.m.3 views

CVE-2026-3754

A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown function of the file /addstock.php. Performing a manipulation of the argument cost results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

8.8CVSS5.8AI score0.00301EPSS
Exploits1References5
CVE
CVE
added 2026/03/08 5:32 p.m.12 views

CVE-2026-3754

CVE-2026-3754 affects SourceCodester Sales and Inventory System 1.0. The vulnerability is an SQL injection in the /add_stock.php module, triggered by manipulating the cost argument, with remote exploitation and a publicly available exploit. Multiple feeds consistently describe an unknown function...

8.8CVSS6.5AI score0.00301EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/03/08 5:32 p.m.40 views

CVE-2026-3754 SourceCodester Sales and Inventory System add_stock.php sql injection

A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown function of the file /addstock.php. Performing a manipulation of the argument cost results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

6.5CVSS0.00301EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/03/08 5:32 p.m.2 views

CVE-2026-3754

A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown function of the file /addstock.php. Performing a manipulation of the argument cost results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

6.5CVSS5.7AI score0.00301EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2026/03/08 12:0 a.m.9 views

SourceCodester Sales and Inventory System SQL注入漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a SQL injection vulnerability. This vulnerability arises from incorrect handling of the cost...

8.8CVSS6.7AI score0.00301EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/04/26 12:43 a.m.11 views

CVE-2025-3823

A vulnerability classified as problematic has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected is an unknown function of the file add-stock.php. The manipulation of the argument txttotalcost/txtproductID/txtprice/txtexpirydate leads to cross site scripting. ...

4.8CVSS6.3AI score0.00358EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/04/20 12:0 a.m.5 views

SourceCodester Web-based Pharmacy Product Management System 代码注入漏洞

SourceCodester Web-based Pharmacy Product Management System is SourceCodester open source a Web-based pharmacy product management system. A code injection vulnerability exists in version 1.0 of the SourceCodester Web-based Pharmacy Product Management System, which is caused by an error in the...

4.8CVSS4.3AI score0.00358EPSS
Exploits1References4
Rows per page
Query Builder