CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2 days ago•7 views

EUVD-2026-33623

A vulnerability was determined in SourceCodester Pharmacy Sales and Inventory System up to 1.0. This issue affects the function createsupplier of the file /Exportcsv/export of the component Supplier Creation Interface. This manipulation of the argument Address/Company Name causes csv injection...

5.8CVSS5.5AI score0.00051EPSS

CVE•added 2 days ago•6 views

CVE-2026-10245

Technical details about CVE-2026-10245 are not provided in the connected documents. The Initial Description includes exploit info, but no additional technical specifics beyond what is stated. Monitor for updates.

5.1CVSS4.2AI score0.00034EPSS

Cvelist•added 2 days ago•30 views

CVE-2026-10245 SourceCodester Pharmacy Sales and Inventory System main create_supplier cross site scripting

5.1CVSS0.00034EPSS

Vulnrichment•added 2 days ago•2 views

CVE-2026-10245 SourceCodester Pharmacy Sales and Inventory System main create_supplier cross site scripting

5.1CVSS4.2AI score0.00034EPSS

Vulnrichment•added 2 days ago•4 views

CVE-2026-10244 SourceCodester Pharmacy Sales and Inventory System main create_medicine_name cross site scripting

A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is the function createmedicinename of the file /ShowForm/createmedicinename/main. Performing a manipulation of the argument medicinename results in cross site scripting. The atta...

5.1CVSS4.3AI score0.00034EPSS

Positive Technologies•added 2 days ago•9 views

PT-2026-45393

A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This vulnerability affects the function create generic name of the file /ShowForm/create generic name/main. The manipulation of the argument generic name results in cross site scripting. The attack may be launche...

5.1CVSS4.3AI score0.00034EPSS

Exploits0References7

CNNVD•added 2 days ago•3 views

SourceCodester Pharmacy Sales and Inventory System Code Injection Vulnerability

SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System contains a code injection vulnerability. This vulnerability arises from improper...

5.1CVSS5.7AI score0.00034EPSS

NVD•added 3 days ago•5 views

CVE-2026-10172

A security flaw has been discovered in Bdtask Multi-Store Inventory Management System 1.0. The affected element is the function Upload of the file application/modules/dashboard/controllers/Module.php of the component Component Module. The manipulation of the argument module results in unrestricte...

6.5CVSS0.00036EPSS

Cvelist•added 3 days ago•28 views

CVE-2026-10172 Bdtask Multi-Store Inventory Management System Component Module.php upload unrestricted upload

6.5CVSS0.00036EPSS

ATTACKERKB•added 3 days ago•6 views

CVE-2026-10172

6.5CVSS5.5AI score0.00036EPSS

Exploits0References5Affected Software1

CVE•added 3 days ago•7 views

CVE-2026-10172

The CVE-2026-10172 entry concerns Bdtask Multi-Store Inventory Management System 1.0. The vulnerability lies in the Upload function of the file application/modules/dashboard/controllers/Module.php within the Module component, where manipulating the module argument yields unrestricted file upload....

6.5CVSS6.3AI score0.00036EPSS

CNNVD•added 3 days ago•3 views

Bdtask Multi-Store Inventory Management System SQL注入漏洞

The Bdtask Multi-Store Inventory Management System is an inventory management system developed by the Bdtask company in Bangladesh. Version 1.0 of the Bdtask Multi-Store Inventory Management System has a SQL injection vulnerability. This vulnerability arises from the accountsreportsearch function...

5.8CVSS5.9AI score0.00026EPSS

RedhatCVE•added 2026/05/26 8:15 p.m.•7 views

CVE-2026-9444

A vulnerability was detected in SourceCodester Simple POS and Inventory System 1.0. This issue affects the function delete of the file /admin/deleteproduct.php of the component GET Parameter Handler. The manipulation of the argument ID results in sql injection. The attack may be launched remotely...

5.8CVSS5.7AI score0.00036EPSS

RedhatCVE•added 2026/05/26 8:15 p.m.•7 views

CVE-2026-9445

A flaw has been found in SourceCodester Simple POS and Inventory System 1.0. Impacted is an unknown function of the file /admin/addproduct.php of the component File Extension Handler. This manipulation of the argument image causes unrestricted upload. Remote exploitation of the attack is possible...

6.5CVSS6.2AI score0.0004EPSS

RedhatCVE•added 2026/05/26 8:14 p.m.•9 views

CVE-2026-9447

A vulnerability was found in SourceCodester Simple POS and Inventory System 1.0. The impacted element is an unknown function of the file /user/search.php. Performing a manipulation of the argument Name results in sql injection. The attack is possible to be carried out remotely. The exploit has be...

7.5CVSS6.9AI score0.00039EPSS

ATTACKERKB•added 2026/05/25 9:45 a.m.•7 views

CVE-2026-9447

7.5CVSS6.9AI score0.00039EPSS

Exploits0References5Affected Software1

EUVD•added 2026/05/25 9:45 a.m.•5 views

EUVD-2026-31663

7.5CVSS6.9AI score0.00039EPSS

EUVD•added 2026/05/25 9:30 a.m.•10 views

EUVD-2026-31660

A vulnerability has been found in SourceCodester Simple POS and Inventory System 1.0. The affected element is an unknown function of the file /admin/editcustomer.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed t...

5.8CVSS5.7AI score0.00036EPSS

Vulnrichment•added 2026/05/25 9:30 a.m.•2 views

CVE-2026-9446 SourceCodester Simple POS and Inventory System edit_customer.php sql injection

5.8CVSS5.7AI score0.00036EPSS