CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

35 matches found

CVE-2026-11495

A vulnerability was detected in CodeAstro Ingredients Stock Management System 1.0. This impacts an unknown function of the file /Ingredients-Stock/addstock.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit is now public and may be...

6.5CVSS0.00033EPSS

Exploits0References6

CVE•added 5 days ago•17 views

CVE-2026-11495

The CVE affects CodeAstro Ingredients Stock Management System 1.0. Vulnerable component: /Ingredients-Stock/add_stock.php. Root cause: manipulation of the argument ID enables an SQL injection. Impact: data confidentiality/integrity/availability may be affected; attack vector is network with low c...

6.5CVSS6.6AI score0.00033EPSS

Exploits0References6

EUVD•added 5 days ago•7 views

EUVD-2026-35026

6.5CVSS6.5AI score0.00033EPSS

Exploits0References6

Cvelist•added 5 days ago•39 views

CVE-2026-11495 CodeAstro Ingredients Stock Management System add_stock.php sql injection

6.5CVSS0.00033EPSS

Exploits0References6

ATTACKERKB•added 5 days ago•8 views

CVE-2026-11495

6.5CVSS6.5AI score0.00033EPSS

Exploits0References6Affected Software1

Positive Technologies•added 5 days ago•9 views

PT-2026-47257

A vulnerability was detected in CodeAstro Ingredients Stock Management System 1.0. This impacts an unknown function of the file /Ingredients-Stock/add stock.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit is now public and may be...

6.5CVSS5.5AI score0.00033EPSS

Exploits0References7

NVD•added 2026/03/30 4:16 p.m.•4 views

CVE-2026-30562

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addstock.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML...

9.3CVSS0.00074EPSS

Exploits0References1

Positive Technologies•added 2026/03/30 12:0 a.m.•3 views

PT-2026-29044

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add stock.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML...

6AI score0.00074EPSS

Exploits0References2

CVE•added 2026/03/30 12:0 a.m.•6 views

CVE-2026-30562

SourceCodester Sales and Inventory System 1.0 contains a reflected XSS in add_stock.php via the msg parameter. The application does not sanitize user input, enabling an attacker to craft a URL that injects arbitrary script/html. There are no publicly provided exploit details in the connected docu...

9.3CVSS6AI score0.00074EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/03/30 12:0 a.m.•12 views

CVE-2026-30562

0.00074EPSS

Exploits0References1

ATTACKERKB•added 2026/03/30 12:0 a.m.•1 views

CVE-2026-30562

9.3CVSS6AI score0.00074EPSS

Exploits0References2

CNNVD•added 2026/03/30 12:0 a.m.•3 views

SourceCodester Sales and Inventory System 安全漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a security vulnerability. This vulnerability stems from improper cleaning of the parameter msg i...

9.3CVSS5.6AI score0.00074EPSS

Exploits0References2

Vulnrichment•added 2026/03/30 12:0 a.m.•3 views

CVE-2026-30562

6AI score0.00074EPSS

Exploits0References1

RedhatCVE•added 2026/03/28 4:56 a.m.•1 views

CVE-2026-30575

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file. The application fails to validate the "txtqty" parameter during stock entry, allowing negative values to be processed. This causes the system to decrease the inventory level...

7.5CVSS5.8AI score0.00039EPSS

Exploits1References1

EUVD•added 2026/03/27 6:31 p.m.•1 views

EUVD-2026-16707

7.5CVSS5.8AI score0.00039EPSS

Exploits1References2

Vulnrichment•added 2026/03/27 12:0 a.m.•1 views

CVE-2026-30576

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file. The application fails to validate the "txtprice" and "txttotalcost" parameters during stock entry, allowing negative financial values to be submitted. This leads to corruption...

5.8AI score0.00082EPSS

Exploits1References1

Cvelist•added 2026/03/27 12:0 a.m.•19 views

CVE-2026-30576

0.00082EPSS

Exploits1References1

ATTACKERKB•added 2026/03/27 12:0 a.m.•0 views

CVE-2026-30575

5.8AI score0.00039EPSS

Exploits1References2

CVE•added 2026/03/27 12:0 a.m.•5 views

CVE-2026-30575

This CVE affects SourceCodester Pharmacy Product Management System 1.0, specifically the add-stock.php logic. The root cause is improper validation of the txtqty parameter during stock entry, which allows negative values to be processed. As a result, the system decreases inventory levels instead ...

7.5CVSS5.8AI score0.00039EPSS

Exploits1References1Affected Software1

Cvelist•added 2026/03/27 12:0 a.m.•17 views

CVE-2026-30575

0.00039EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by