Lucene search
K

91 matches found

Cvelist
Cvelist
added 2026/07/05 9:15 a.m.40 views

CVE-2026-14734 SourceCodester Class and Exam Timetabling System edit_product.php sql injection

A flaw has been found in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /editproduct.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used...

7.5CVSS0.00412EPSS
Exploits0References6
CVE
CVE
added 2026/07/05 9:15 a.m.20 views

CVE-2026-14734

SourceCodester Class and Exam Timetabling System 1.0 contains a SQL injection flaw in the edit_product.php file (vulnerable function handling ID). The vulnerability arises from manipulating the ID parameter, enabling remote exploitation. Exploitation details are published (in-the-wild PoC), with ...

7.5CVSS6.8AI score0.00412EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/07/05 9:15 a.m.6 views

CVE-2026-14734

A flaw has been found in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /editproduct.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used...

7.5CVSS6.8AI score0.00412EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2025/11/18 3:5 a.m.8 views

CVE-2025-13260

A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...

8.8CVSS7AI score0.00277EPSS
Exploits1References1
NVD
NVD
added 2025/11/17 4:15 a.m.8 views

CVE-2025-13260

A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...

8.8CVSS0.00277EPSS
Exploits1References6
OSV
OSV
added 2025/11/17 4:15 a.m.5 views

CVE-2025-13260

A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...

8.8CVSS5.8AI score0.00277EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/11/17 3:2 a.m.3 views

CVE-2025-13260 Campcodes Supplier Management System edit_product.php sql injection

A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...

6.5CVSS6.4AI score0.00277EPSS
Exploits1References6
EUVD
EUVD
added 2025/11/17 3:2 a.m.5 views

EUVD-2025-197761

A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...

6.5CVSS6.6AI score0.00277EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/11/17 3:2 a.m.12 views

CVE-2025-13260 Campcodes Supplier Management System edit_product.php sql injection

A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/editproduct.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to t...

6.5CVSS0.00277EPSS
Exploits1References6
CVE
CVE
added 2025/11/17 3:2 a.m.17 views

CVE-2025-13260

The vulnerability CVE-2025-13260 affects Campcodes Supplier Management System 1.0. It arises from improper handling of the cmbProductUnit parameter in the file /manufacturer/edit_product.php, enabling SQL injection. The issue is exploitable remotely and has been publicly disclosed. Connected sour...

8.8CVSS6.5AI score0.00277EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.10 views

PT-2025-47108

A vulnerability has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /manufacturer/edit product.php. Such manipulation of the argument cmbProductUnit leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to...

6.5CVSS7AI score0.00277EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/11/04 12:53 a.m.13 views

CVE-2025-63448

Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...

6.1CVSS6.2AI score0.0026EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/03 6:31 p.m.3 views

EUVD-2025-37499

Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...

6.1CVSS5.7AI score0.0026EPSS
Exploits1References2
OSV
OSV
added 2025/11/03 4:15 p.m.5 views

CVE-2025-63448

Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...

6.1CVSS5.8AI score0.0026EPSS
Exploits1References1
NVD
NVD
added 2025/11/03 4:15 p.m.4 views

CVE-2025-63448

Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...

6.1CVSS0.0026EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/11/03 12:0 a.m.7 views

CVE-2025-63448

Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...

0.0026EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/11/03 12:0 a.m.5 views

PT-2025-44775

Name of the Vulnerable Software and Affected Versions Water Management System version 1.0 Description The Water Management System version 1.0 is susceptible to Cross Site Scripting XSS. The issue occurs in the /edit product.php?id=1 API endpoint. The id parameter is potentially vulnerable. XSS...

6.1CVSS5.7AI score0.0026EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/11/03 12:0 a.m.4 views

Water-Management-System 安全漏洞

Water-Management-System is an inventory management system by the individual developer Dikshant Naik. A security vulnerability exists in Water-Management-System version 1.0, which originates from cross-site scripting in the file /editproduct.php?id=1...

6.1CVSS6.1AI score0.0026EPSS
Exploits1References2
CVE
CVE
added 2025/11/03 12:0 a.m.12 views

CVE-2025-63448

Water Management System v1.0 is reported vulnerable to Cross Site Scripting (XSS) in /edit_product.php?id=1. Concrete details appear across multiple sources (NVD, Red Hat, ENISA, CIRCL, CNNVD, CVE Lists) confirming a XSS issue affecting the /edit_product.php endpoint. The CVSS v3.1 base score is ...

6.1CVSS5.8AI score0.0026EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/03 12:0 a.m.1 views

CVE-2025-63448

Water Management System v1.0 is vulnerable to Cross Site Scripting XSS in /editproduct.php?id=1...

5.8AI score0.0026EPSS
Exploits1References1
Rows per page
Query Builder