Lucene search
K

99 matches found

NVD
NVD
added 2026/03/09 2:15 a.m.5 views

CVE-2026-3792

A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file purchaseinvoice.php of the component GET Parameter Handler. The manipulation of the argument purchaseid results in sql injection. The attack may be performed from remote. The explo...

8.8CVSS0.00301EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/03/09 1:32 a.m.4 views

CVE-2026-3793 SourceCodester Sales and Inventory System GET Parameter sales_invoice1.php sql injection

A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This vulnerability affects unknown code of the file salesinvoice1.php of the component GET Parameter Handler. This manipulation of the argument sellid causes sql injection. It is possible to initiate the attack...

6.5CVSS5.7AI score0.00368EPSS
Exploits1References5
CVE
CVE
added 2026/03/09 1:32 a.m.15 views

CVE-2026-3793

SourceCodester Sales and Inventory System 1.0 contains a GET parameter handling flaw in sales_invoice1.php (sellid) that enables SQL injection. The vulnerability is remotely exploitable and has publicly disclosed exploits. Remediation guidance from PT-2026-23998 suggests applying a fix to the SQL...

8.8CVSS6.5AI score0.00368EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/03/09 1:32 a.m.37 views

CVE-2026-3793 SourceCodester Sales and Inventory System GET Parameter sales_invoice1.php sql injection

A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This vulnerability affects unknown code of the file salesinvoice1.php of the component GET Parameter Handler. This manipulation of the argument sellid causes sql injection. It is possible to initiate the attack...

6.5CVSS0.00368EPSS
Exploits1References5
NVD
NVD
added 2026/03/09 12:16 a.m.5 views

CVE-2026-3790

A flaw has been found in SourceCodester Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file checksupplierdetails.php of the component POST Parameter Handler. Executing a manipulation of the argument stockname1 can lead to sql injection. The attac...

8.8CVSS0.00301EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/09 12:0 a.m.6 views

PT-2026-23998

Name of the Vulnerable Software and Affected Versions SourceCodester Sales and Inventory System version 1.0 Description A flaw exists in SourceCodester Sales and Inventory System 1.0 related to the handling of a GET parameter. Specifically, manipulation of the sellid argument within the sales...

8.8CVSS6.5AI score0.00368EPSS
Exploits1References11
NVD
NVD
added 2026/03/08 6:15 p.m.4 views

CVE-2026-3755

A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This impacts an unknown function of the file /checkcustomerdetails.php of the component POST Handler. Executing a manipulation of the argument stockname1 can lead to sql injection. The attack can be launched remotely...

8.8CVSS0.00301EPSS
Exploits1References5
CVE
CVE
added 2026/03/08 5:32 p.m.13 views

CVE-2026-3755

CVE-2026-3755 affects SourceCodester Sales and Inventory System 1.0, specifically the POST Handler. The vulnerability is a SQL injection in the file /check_customer_details.php caused by manipulating the argument stock_name1 (also reported in variations like stock name1). It can be exploited remo...

8.8CVSS6.5AI score0.00301EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2026/03/08 5:16 p.m.6 views

CVE-2026-3753

A vulnerability has been found in SourceCodester Sales and Inventory System up to 1.0. The impacted element is an unknown function of the file /addsalesprint.php. Such manipulation of the argument sid leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS0.00301EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/08 12:0 a.m.5 views

PT-2026-23966

Name of the Vulnerable Software and Affected Versions SourceCodester Sales and Inventory System version 1.0 Description A SQL injection issue exists in SourceCodester Sales and Inventory System 1.0. The issue is located in the POST Handler component, specifically within the file /check customer...

8.8CVSS6.6AI score0.00301EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-59262

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.00526EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-1539

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00421EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24656

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.0038EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/09/26 12:0 a.m.5 views

CampCodes Computer Sales and Inventory System SQL注入漏洞

CampCodes Computer Sales and Inventory System is a computerized sales and inventory system from CampCodes Philippines. CampCodes Computer Sales and Inventory System version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter ID in the file...

9.8CVSS7.7AI score0.00405EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/09/23 1:32 a.m.3 views

CVE-2025-10831 Campcodes Computer Sales and Inventory System pro_edit1.php sql injection

A vulnerability has been found in Campcodes Computer Sales and Inventory System 1.0. Impacted is an unknown function of the file /pages/proedit1.php. The manipulation of the argument prodcode leads to sql injection. The attack is possible to be carried out remotely. The exploit has been disclosed...

7.5CVSS7.2AI score0.00387EPSS
Exploits1References5
OSV
OSV
added 2025/09/22 7:15 a.m.4 views

CVE-2025-10786

A flaw has been found in Campcodes Grocery Sales and Inventory System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=deleteuser. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be us...

9.8CVSS5.8AI score0.00521EPSS
Exploits1References5
NVD
NVD
added 2025/09/22 6:15 a.m.6 views

CVE-2025-10785

A vulnerability was detected in Campcodes Grocery Sales and Inventory System 1.0. This affects an unknown part of the file /manageuser.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

9.8CVSS0.00521EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/09/16 8:32 p.m.12 views

CVE-2025-10564 Campcodes Grocery Sales and Inventory System ajax.php sql injection

A vulnerability was found in Campcodes Grocery Sales and Inventory System 1.0. Affected is an unknown function of the file /ajax.php?action=deletecategory. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS0.00387EPSS
Exploits1References5
OSV
OSV
added 2025/09/15 1:15 p.m.5 views

CVE-2025-10446

A security vulnerability has been detected in Campcodes Computer Sales and Inventory System 1.0. The affected element is an unknown function of the file /pages/custsearchfrm.php?action=edit. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely...

9.8CVSS5.7AI score0.00441EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/09/14 12:0 a.m.5 views

CampCodes Grocery Sales and Inventory System SQL注入漏洞

CampCodes Grocery Sales and Inventory System is a grocery sales and inventory system from CampCodes Philippines. A SQL injection vulnerability exists in Campcodes Grocery Sales and Inventory System version 1.0, which stems from incorrect manipulation of the parameter ID in file/ajax.php, which...

9.8CVSS7.8AI score0.00383EPSS
Exploits1References6
Rows per page
Query Builder