44 matches found
CVE-2026-30576
SourceCodester Pharmacy Product Management System 1.0 (add-stock.php) is affected by a Business Logic flaw: txtprice and txttotalcost are not validated during stock entry, enabling negative values that can corrupt financial records and be used to manipulate inventory asset values and procurement ...
CVE-2026-4013
A vulnerability was identified in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown function of the file addadmin.php. Such manipulation leads to improper authorization. The attack may be launched remotely...
EUVD-2024-17030
Malicious code in bioql PyPI...
EUVD-2025-12627
Malicious code in bioql PyPI...
EUVD-2025-9577
Malicious code in bioql PyPI...
EUVD-2025-9642
Malicious code in bioql PyPI...
CVE-2025-45997
Sourcecodester Web-based Pharmacy Product Management System v.1.0 has a file upload vulnerability. An attacker can upload a PHP file disguised as an image by modifying the Content-Type header to image/jpg...
CVE-2024-1269
A vulnerability has been found in SourceCodester Product Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /supplier.php. The manipulation of the argument suppliername/suppliercontact leads to cross site scripting. The attack can be initiated...
CVE-2025-4547
CVE-2025-4547 affects SourceCodester Web-based Pharmacy Product Management System 1.0. The Add User Page is vulnerable to cross-site scripting (XSS) in an unknown functionality, with parameters potentially affected. The attack may be launched remotely and exploits have been disclosed publicly. Co...
CVE-2025-45751
CVE-2025-45751 affects SourceCodester Web Based Pharmacy Product Management System 1.0. The issue is a Cross Site Scripting (XSS) vulnerability in add-admin.php via the Fullname field, with root cause an unvalidated Fullname input. Potential impact is client-side script execution in the context o...
CVE-2025-4069
A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...
CVE-2025-4069
A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...
CVE-2025-4069
A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...
CVE-2025-4069 code-projects Product Management System add_item stack-based overflow
A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...
CVE-2025-4069
The CVE-2025-4069 entry affects code-projects Product Management System 1.0, specifically the function add_item . The root cause is manipulation of the argument st.productname , which leads to a stack-based buffer overflow. Exploitation requires local access, and disclosures have been made public...
PT-2025-18179 · Unknown · Code-Projects Product Management System
Name of the Vulnerable Software and Affected Versions: code-projects Product Management System version 1.0 Description: A critical issue has been found in the function add item. The manipulation of the argument st.productname leads to a stack-based buffer overflow. This issue can be exploited...
Code-Projects Product Management System 安全漏洞
Code-Projects Product Management System is an open source product management system from Code-Projects. A security vulnerability exists in Code-Projects Product Management System version 1.0, which stems from an improper operation of the additem function on the parameter st.productname, which cou...
CVE-2025-3764
A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product Management System 1.0. This vulnerability affects unknown code of the file /edit-product.php. The manipulation of the argument Avatar leads to unrestricted upload. The attack can be initiated remotely. T...
CVE-2025-3826
A vulnerability, which was classified as problematic, was found in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown part of the file add-supplier.php. The manipulation of the argument txtsuppliername/txtaddress leads to cross site scripting. It is possible ...
CVE-2025-3823 SourceCodester Web-based Pharmacy Product Management System add-stock.php cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected is an unknown function of the file add-stock.php. The manipulation of the argument txttotalcost/txtproductID/txtprice/txtexpirydate leads to cross site scripting. ...