Lucene search
K

99 matches found

CNNVD
CNNVD
added 2025/05/15 12:0 a.m.4 views

CampCodes Sales and Inventory System 注入漏洞

CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. An injection vulnerability exists in version 1.0 of the CampCodes Sales and Inventory System, which originates from a SQL injection due to incorrect manipulation of the parameter sid in the file...

9.8CVSS7.7AI score0.00525EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/01/04 3:0 a.m.10 views

CVE-2025-0200 code-projects Point of Sales and Inventory Management System search_num.php sql injection

A vulnerability has been found in code-projects Point of Sales and Inventory Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /user/searchnum.php. The manipulation of the argument search leads to sql injection. The attack can...

6.5CVSS7AI score0.0051EPSS
Exploits1References5
NVD
NVD
added 2025/01/03 11:15 p.m.14 views

CVE-2025-0199

A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minuscart.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack...

6.5CVSS0.00421EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/01/03 10:31 p.m.27 views

CVE-2025-0199 code-projects Point of Sales and Inventory Management System minus_cart.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minuscart.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack...

6.5CVSS0.00421EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/01/03 10:31 p.m.15 views

CVE-2025-0199 code-projects Point of Sales and Inventory Management System minus_cart.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minuscart.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack...

6.5CVSS7AI score0.00421EPSS
Exploits1References5
CVE
CVE
added 2025/01/03 10:31 p.m.70 views

CVE-2025-0199

CVE-2025-0199 affects code-projects Point of Sales and Inventory Management System 1.0, with an SQL injection in /user/minus_cart.php triggered by manipulating the id parameter. The vulnerability is described as remote-exploitable and publicly disclosed. Connected sources (NVD, Red Hat, CVE listi...

6.5CVSS6.8AI score0.00421EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/03 8:31 p.m.11 views

CVE-2025-0198 code-projects Point of Sales and Inventory Management System search_result.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Point of Sales and Inventory Management System 1.0. This issue affects some unknown processing of the file /user/searchresult.php. The manipulation of the argument id leads to sql injection. The attack may be...

6.5CVSS7.4AI score0.00421EPSS
Exploits1References5
NVD
NVD
added 2025/01/03 8:15 p.m.33 views

CVE-2025-0197

A vulnerability classified as critical was found in code-projects Point of Sales and Inventory Management System 1.0. This vulnerability affects unknown code of the file /user/search.php. The manipulation of the argument name leads to sql injection. The attack can be initiated remotely. The explo...

6.5CVSS0.00421EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/01/03 7:31 p.m.38 views

CVE-2025-0197 code-projects Point of Sales and Inventory Management System search.php sql injection

A vulnerability classified as critical was found in code-projects Point of Sales and Inventory Management System 1.0. This vulnerability affects unknown code of the file /user/search.php. The manipulation of the argument name leads to sql injection. The attack can be initiated remotely. The explo...

6.5CVSS0.00421EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/01/03 7:0 p.m.29 views

CVE-2025-0196 code-projects Point of Sales and Inventory Management System plist.php sql injection

A vulnerability classified as critical has been found in code-projects Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file /user/plist.php. The manipulation of the argument cat leads to sql injection. It is possible to initiate the attack remotely. The...

6.5CVSS0.00421EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/01/03 12:31 a.m.13 views

CVE-2025-0174 code-projects Point of Sales and Inventory Management System Parameter search_result2.php sql injection

A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been classified as critical. This affects an unknown part of the file /user/searchresult2.php of the component Parameter Handler. The manipulation of the argument search leads to sql injection. I...

6.5CVSS7AI score0.00421EPSS
Exploits1References5
OSV
OSV
added 2024/10/20 3:15 a.m.3 views

CVE-2024-10165

A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file deletecustcom.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The explo...

9.8CVSS5.8AI score0.00663EPSS
Exploits1References4
OSV
OSV
added 2023/03/08 6:15 p.m.23 views

CVE-2023-1275

A vulnerability classified as problematic was found in SourceCodester Phone Shop Sales Managements System 1.0. This vulnerability affects unknown code of the file /osms/assets/plugins/jquery-validation-1.11.1/demo/captcha/index.php of the component CAPTCHA Handler. The manipulation leads to cross...

6.1CVSS3.8AI score0.00557EPSS
Exploits1References3
OSV
OSV
added 2023/03/01 8:15 p.m.6 views

CVE-2023-1130

A vulnerability, which was classified as critical, was found in SourceCodester Computer Parts Sales and Inventory System 1.0. This affects an unknown part of the file processlogin. The manipulation of the argument user leads to sql injection. It is possible to initiate the attack remotely. The...

9.8CVSS5.7AI score0.00669EPSS
Exploits0References3
Prion
Prion
added 2021/11/02 10:15 a.m.10 views

Authentication flaw

Phone Shop Sales Managements System using PHP with Source Code 1.0 is vulnerable to authentication bypass which leads to account takeover of the admin...

7.5CVSS9.7AI score0.14839EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/07/29 5:21 p.m.19 views

CVE-2021-36624

Sourcecodester Phone Shop Sales Managements System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass...

10AI score0.03414EPSS
Exploits1References2
OSV
OSV
added 2018/12/06 11:29 p.m.4 views

CVE-2018-19924

An issue was discovered in Sales & Company Management System SCMS through 2018-06-06. An email address can be modified in between the request for a validation code and the entry of the validation code, leading to storage of an XSS payload contained in the modified address...

6.1CVSS5.8AI score0.00707EPSS
Exploits1References1
OSV
OSV
added 2018/01/24 10:29 p.m.3 views

CVE-2017-1000474

Soyket Chowdhury Vehicle Sales Management System version 2017-07-30 is vulnerable to multiple SQL Injecting in login/vehicle.php, login/profile.php, login/Actions.php, login/manageemployee.php, and login/sell.php scripts resulting in the expose of user's login credentials, SQL Injection and Store...

9.8CVSS6AI score0.02127EPSS
Exploits4References2
myhack58
myhack58
added 2010/04/10 12:0 a.m.16 views

The wind-Online sales system v3. 0. 0 Upload vulnerability-vulnerability warning-the black bar safety net

Author:Lan3a Program or with the FCK editor. The official website also have this problem. Use method: The first step: FooeeShop. Webedit/editor/filemanager/connectors/asp/connector. asp? Command=CreateFolder&Type=Image&CurrentFolder=%2Fshell. asp&NewFolderName=z&uuid=1 2 4 4 7 8 9 9 7 5 6 8 4 The...

1.1AI score
Exploits0
Rows per page
Query Builder