Lucene search
+L

9 matches found

Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.10 views

PT-2026-35717

A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected is an unknown function of the file /index.php?page=product. Performing a manipulation of the argument ID results in cross site scripting. It is possible to initiate the attack remotely. The exploit has...

4.8CVSS3.3AI score0.0021EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/11/17 4:6 a.m.13 views

CVE-2025-13234

A vulnerability was found in itsourcecode Inventory Management System 1.0. The impacted element is an unknown function of the file /index.php?q=product. Performing manipulation of the argument PROID results in sql injection. It is possible to initiate the attack remotely. The exploit has been mad...

9.8CVSS6.4AI score0.00316EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-10670

Malware in sbrugna...

4.9CVSS5.6AI score0.00997EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-26487

Malware in sbrugna...

6.5CVSS6.5AI score0.00664EPSS
Exploits0References3
OSV
OSV
added 2025/08/28 2:15 p.m.4 views

CVE-2025-51969

A SQL Injection vulnerability exists in the product.php page of PuneethReddyHC Online Shopping System Advanced 1.0. This flaw is present in the productid GET parameter, which is not properly validated before being included in a SQL statement...

6.5CVSS5.8AI score0.00227EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:53 p.m.4 views

CVE-2021-37476

In NavigateCMS version 2.9.4 and below, function in product.php is vulnerable to sql injection on parameter id through a post request, which results in arbitrary sql query execution in the backend database...

9.8CVSS7.5AI score0.02162EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/11/29 12:0 a.m.6 views

CVE-2022-42109

Online-shopping-system-advanced 1.0 was discovered to contain a SQL injection vulnerability via the p parameter at /shopping/product.php...

9.9AI score0.01122EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/06/07 12:0 a.m.7 views

Neetai Tech SQL注入漏洞

Neetai Tech is a web development, GST software and accounting software from Neetai India.Neetai Tech is vulnerable to SQL injection, which can be exploited by attackers to cause sql injection issues via manipulation of the /product.php file...

9.8CVSS5.8AI score0.0062EPSS
Exploits0References2
OSV
OSV
added 2019/01/02 5:29 p.m.3 views

CVE-2019-3577

An issue was discovered in Waimai Super Cms 20150505. web/Lib/Action/ProductAction.class.php allows blind SQL Injection via the id0 parameter to the /product URI...

9.8CVSS7.4AI score0.01072EPSS
Exploits0References1
Rows per page
Query Builder