Lucene search
K

920 matches found

Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.18 views

PT-2026-43029

Name of the Vulnerable Software and Affected Versions SourceCodester Simple POS and Inventory System version 1.0 Description An issue exists in the GET Parameter Handler component where the delete function within the '/admin/deleteproduct.php' endpoint is susceptible to SQL injection. This occurs...

5.8CVSS5.8AI score0.00258EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2026/05/23 11:49 p.m.81 views

Stored-XSS-in-Inventory-System-using-PHP-and-MySQL

Stored XSS in Inventory System using PHP and MySQL Vulnera...

6.2AI score
Exploits0
NVD
NVD
added 2026/05/10 2:16 a.m.25 views

CVE-2026-8219

A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. The impacted element is an unknown function of the file /inventory/supplier-save. The manipulation leads to cross site scripting. Remote exploitation of the attack is possible. The exploit has been disclosed publicl...

4.8CVSS0.00258EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/07 6:15 p.m.7 views

CVE-2026-8083 SourceCodester Pharmacy Sales and Inventory System ajax.php save_user sql injection

A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /ajax.php?action=saveuser. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public and could be...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.12 views

SourceCodester Pharmacy Sales and Inventory System 注入漏洞

SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System contains a SQL injection vulnerability, which stems from the parameter ID handli...

7.5CVSS7.2AI score0.00254EPSS
Exploits0References1
NVD
NVD
added 2026/05/01 5:16 a.m.3 views

CVE-2026-7550

A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected is an unknown function of the file /ajax.php?action=savecustomer. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

7.5CVSS0.00259EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/01 3:45 a.m.5 views

CVE-2026-7550 SourceCodester Pharmacy Sales and Inventory System ajax.php save_customer sql injection

A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected is an unknown function of the file /ajax.php?action=savecustomer. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/01 3:30 a.m.5 views

CVE-2026-7549

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=deletecustomer. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has been...

7.5CVSS5.3AI score0.00274EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/01 3:30 a.m.33 views

CVE-2026-7549 SourceCodester Pharmacy Sales and Inventory System ajax.php delete_customer sql injection

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=deletecustomer. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has been...

7.5CVSS0.00274EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/01 3:30 a.m.6 views

EUVD-2026-26475

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=deletecustomer. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has been...

7.5CVSS5.3AI score0.00274EPSS
Exploits0References5
NVD
NVD
added 2026/04/29 5:16 p.m.5 views

CVE-2026-7391

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects the function savesupplier of the file /ajax.php?action=savesupplier. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publish...

6.5CVSS0.00192EPSS
Exploits0References5
NVD
NVD
added 2026/04/29 5:16 p.m.4 views

CVE-2026-7392

A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts the function deletesupplier of the file /ajax.php?action=deletesupplier. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been...

6.5CVSS0.00192EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/29 3:45 p.m.4 views

CVE-2026-7390 SourceCodester Pharmacy Sales and Inventory System index.php customer cross site scripting

A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. The impacted element is the function Customer of the file /index.php?page=customer. The manipulation of the argument Name results in cross site scripting. The attack may be launched remotely. The exploit is no...

5.1CVSS3.5AI score0.00195EPSS
Exploits0References5
NVD
NVD
added 2026/04/28 3:16 p.m.3 views

CVE-2026-7283

A security flaw has been discovered in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts the function saveexpired of the file /ajax.php?action=saveexpired. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit ha...

5.8CVSS0.00263EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/28 2:15 p.m.32 views

CVE-2026-7283 SourceCodester Pharmacy Sales and Inventory System ajax.php save_expired sql injection

A security flaw has been discovered in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts the function saveexpired of the file /ajax.php?action=saveexpired. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit ha...

5.8CVSS0.00263EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/28 1:30 p.m.4 views

CVE-2026-7282 SourceCodester Pharmacy Sales and Inventory System ajax.php delete_expired sql injection

A vulnerability was identified in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects the function deleteexpired of the file /ajax.php?action=deleteexpired. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit is...

5.8CVSS5.1AI score0.00206EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/28 12:0 p.m.5 views

CVE-2026-7269

A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected is an unknown function of the file /index.php?page=product. Performing a manipulation of the argument ID results in cross site scripting. It is possible to initiate the attack remotely. The exploit has...

4.8CVSS3.3AI score0.0021EPSS
Exploits0References6Affected Software1
CNNVD
CNNVD
added 2026/04/28 12:0 a.m.10 views

SourceCodester Pharmacy Sales and Inventory System 跨站脚本漏洞

SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System contains a cross-site scripting vulnerability. This vulnerability stems from the...

4.8CVSS5.6AI score0.0021EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/27 11:30 p.m.31 views

CVE-2026-7200 SourceCodester Pharmacy Sales and Inventory System index.php cross site scripting

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this issue is some unknown functionality of the file /index.php?page=types. Executing a manipulation of the argument ID can lead to cross site scripting. It is possible to launch the attack remotely. The...

5.3CVSS0.0028EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/27 11:30 p.m.8 views

CVE-2026-7200

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this issue is some unknown functionality of the file /index.php?page=types. Executing a manipulation of the argument ID can lead to cross site scripting. It is possible to launch the attack remotely. The...

5.3CVSS3.9AI score0.0028EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder