Lucene search
K

44 matches found

CVE
CVE
added 2026/03/27 12:0 a.m.13 views

CVE-2026-30576

SourceCodester Pharmacy Product Management System 1.0 (add-stock.php) is affected by a Business Logic flaw: txtprice and txttotalcost are not validated during stock entry, enabling negative values that can corrupt financial records and be used to manipulate inventory asset values and procurement ...

7.5CVSS5.8AI score0.00256EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/26 3:6 p.m.2 views

CVE-2026-4013

A vulnerability was identified in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown function of the file addadmin.php. Such manipulation leads to improper authorization. The attack may be launched remotely...

6.5CVSS6.3AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-17030

Malicious code in bioql PyPI...

6.1CVSS4.2AI score0.00654EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-12627

Malicious code in bioql PyPI...

7.8CVSS5.6AI score0.00288EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-9577

Malicious code in bioql PyPI...

7.8CVSS4.4AI score0.00224EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-9642

Malicious code in bioql PyPI...

7.8CVSS5.6AI score0.00338EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/05/28 12:0 a.m.13 views

CVE-2025-45997

Sourcecodester Web-based Pharmacy Product Management System v.1.0 has a file upload vulnerability. An attacker can upload a PHP file disguised as an image by modifying the Content-Type header to image/jpg...

0.00427EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:40 a.m.8 views

CVE-2024-1269

A vulnerability has been found in SourceCodester Product Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /supplier.php. The manipulation of the argument suppliername/suppliercontact leads to cross site scripting. The attack can be initiated...

6.1CVSS6.1AI score0.00654EPSS
Exploits1References1
CVE
CVE
added 2025/05/11 9:0 p.m.70 views

CVE-2025-4547

CVE-2025-4547 affects SourceCodester Web-based Pharmacy Product Management System 1.0. The Add User Page is vulnerable to cross-site scripting (XSS) in an unknown functionality, with parameters potentially affected. The attack may be launched remotely and exploits have been disclosed publicly. Co...

4.8CVSS6.4AI score0.00295EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2025/05/05 12:0 a.m.53 views

CVE-2025-45751

CVE-2025-45751 affects SourceCodester Web Based Pharmacy Product Management System 1.0. The issue is a Cross Site Scripting (XSS) vulnerability in add-admin.php via the Fullname field, with root cause an unvalidated Fullname input. Potential impact is client-side script execution in the context o...

6.1CVSS5.8AI score0.00241EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/01 4:19 p.m.22 views

CVE-2025-4069

A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...

7.8CVSS7.1AI score0.00288EPSS
Exploits1References1
NVD
NVD
added 2025/04/29 4:15 p.m.36 views

CVE-2025-4069

A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...

7.8CVSS0.00288EPSS
Exploits1References5
OSV
OSV
added 2025/04/29 4:15 p.m.5 views

CVE-2025-4069

A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...

7.8CVSS5.7AI score0.00288EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/04/29 3:31 p.m.33 views

CVE-2025-4069 code-projects Product Management System add_item stack-based overflow

A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...

5.3CVSS0.00288EPSS
Exploits1References5
CVE
CVE
added 2025/04/29 3:31 p.m.58 views

CVE-2025-4069

The CVE-2025-4069 entry affects code-projects Product Management System 1.0, specifically the function add_item . The root cause is manipulation of the argument st.productname , which leads to a stack-based buffer overflow. Exploitation requires local access, and disclosures have been made public...

7.8CVSS5.4AI score0.00288EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/29 12:0 a.m.5 views

PT-2025-18179 · Unknown · Code-Projects Product Management System

Name of the Vulnerable Software and Affected Versions: code-projects Product Management System version 1.0 Description: A critical issue has been found in the function add item. The manipulation of the argument st.productname leads to a stack-based buffer overflow. This issue can be exploited...

7.8CVSS5.3AI score0.00288EPSS
Exploits1References9
CNNVD
CNNVD
added 2025/04/29 12:0 a.m.5 views

Code-Projects Product Management System 安全漏洞

Code-Projects Product Management System is an open source product management system from Code-Projects. A security vulnerability exists in Code-Projects Product Management System version 1.0, which stems from an improper operation of the additem function on the parameter st.productname, which cou...

7.8CVSS5.8AI score0.00288EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/04/26 1:1 a.m.19 views

CVE-2025-3764

A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product Management System 1.0. This vulnerability affects unknown code of the file /edit-product.php. The manipulation of the argument Avatar leads to unrestricted upload. The attack can be initiated remotely. T...

8.8CVSS7.2AI score0.00438EPSS
Exploits1References1
NVD
NVD
added 2025/04/20 1:15 p.m.44 views

CVE-2025-3826

A vulnerability, which was classified as problematic, was found in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown part of the file add-supplier.php. The manipulation of the argument txtsuppliername/txtaddress leads to cross site scripting. It is possible ...

4.8CVSS0.00324EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/04/20 10:31 a.m.33 views

CVE-2025-3823 SourceCodester Web-based Pharmacy Product Management System add-stock.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected is an unknown function of the file add-stock.php. The manipulation of the argument txttotalcost/txtproductID/txtprice/txtexpirydate leads to cross site scripting. ...

4.8CVSS0.00337EPSS
Exploits1References4
Rows per page
Query Builder