CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

34 matches found

NVD•added 2026/04/27 11:16 p.m.•4 views

CVE-2026-7194

A weakness has been identified in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=saveproduct. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS0.00043EPSS

Exploits0References5

CVE•added 2026/04/27 10:45 p.m.•5 views

CVE-2026-7194

Affected software: SourceCodester Pharmacy Sales and Inventory System 1.0. Vulnerability location: the file /ajax.php?action=save_product. Vulnerability type / root cause: manipulation of the argument ID leads to a SQL injection vulnerability. Impact / exploitation: attack can be carried out remo...

7.5CVSS7.3AI score0.00043EPSS

Exploits0References5

Vulnrichment•added 2026/04/27 10:45 p.m.•1 views

CVE-2026-7194 SourceCodester Pharmacy Sales and Inventory System ajax.php sql injection

7.5CVSS7.2AI score0.00043EPSS

Exploits0References5

Cvelist•added 2026/04/27 10:45 p.m.•24 views

CVE-2026-7194 SourceCodester Pharmacy Sales and Inventory System ajax.php sql injection

7.5CVSS0.00043EPSS

Exploits0References5

EUVD•added 2026/04/27 10:45 p.m.•2 views

EUVD-2026-25934

7.5CVSS7.3AI score0.00043EPSS

Exploits0References5

Positive Technologies•added 2026/04/27 12:0 a.m.•1 views

PT-2026-35541

A weakness has been identified in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=save product. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS7.2AI score0.00043EPSS

Exploits0References6

EUVD•added 2026/04/09 12:32 a.m.•1 views

EUVD-2026-20788

A vulnerability was identified in SourceCodester Online Food Ordering System 1.0. Affected by this issue is the function saveproduct of the file /Actions.php of the component POST Parameter Handler. Such manipulation of the argument price leads to business logic errors. The attack may be performe...

5.5CVSS5.6AI score0.00051EPSS

Exploits0References6

NVD•added 2026/04/08 11:17 p.m.•1 views

CVE-2026-5811

5.5CVSS0.00051EPSS

Exploits0References5

ATTACKERKB•added 2026/04/08 10:15 p.m.•1 views

CVE-2026-5811

5.5CVSS5.8AI score0.00051EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/04/08 10:15 p.m.•19 views

CVE-2026-5811 SourceCodester Online Food Ordering System POST Parameter Actions.php save_product logic error

5.5CVSS0.00051EPSS

Exploits0References5

CVE•added 2026/04/08 10:15 p.m.•4 views

CVE-2026-5811

Affected product: SourceCodester Online Food Ordering System 1.0. The CVE stems from the POST Parameter Handler, specifically the save_product function in Actions.php, where manipulating the price parameter leads to business logic errors. Impact is described as remote exploitation with publicly a...

5.5CVSS5.8AI score0.00051EPSS

Exploits0References5

CNNVD•added 2026/04/08 12:0 a.m.•2 views

SourceCodester Online Food Ordering System 安全漏洞

The SourceCodester Online Food Ordering System is an open-source online ordering system developed by SourceCodester. Version 1.0 of the SourceCodester Online Food Ordering System has a security vulnerability. This vulnerability stems from the handling of the parameter ‘price’ in the ‘saveproduct’...

5.5CVSS6AI score0.00051EPSS

Exploits0References5

Positive Technologies•added 2026/04/08 12:0 a.m.•2 views

PT-2026-31549

Name of the Vulnerable Software and Affected Versions SourceCodester Online Food Ordering System version 1.0 Description A vulnerability exists in the function save product of the file /Actions.php within the POST Parameter Handler component. Manipulation of the price argument can lead to busines...

5.5CVSS6AI score0.00051EPSS

Exploits0References9

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-29652

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00061EPSS

Exploits1References6

RedhatCVE•added 2025/09/18 7:26 p.m.•4 views

CVE-2025-10562

A flaw has been found in Campcodes Grocery Sales and Inventory System 1.0. This affects an unknown function of the file /ajax.php?action=saveproduct. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be...

9.8CVSS6.6AI score0.00061EPSS

Exploits1References1

NVD•added 2025/09/16 7:15 p.m.•2 views

CVE-2025-10562

9.8CVSS0.00061EPSS

Exploits1References5

Vulnrichment•added 2025/09/16 7:2 p.m.•3 views

CVE-2025-10562 Campcodes Grocery Sales and Inventory System ajax.php sql injection

7.5CVSS6.4AI score0.00061EPSS

Exploits1References5

Cvelist•added 2025/09/16 7:2 p.m.•7 views

CVE-2025-10562 Campcodes Grocery Sales and Inventory System ajax.php sql injection

7.5CVSS0.00061EPSS

Exploits1References5

CVE•added 2025/09/16 7:2 p.m.•11 views

CVE-2025-10562

CVE-2025-10562 affects Campcodes Grocery Sales and Inventory System v1.0. The flaw is in /ajax.php?action=save_product where manipulation of the ID parameter enables SQL injection, allowing remote exploitation (exploit published). The CVSS indicates high/critical impact across confidentiality, in...

9.8CVSS6.4AI score0.00061EPSS

Exploits1References5Affected Software1

Positive Technologies•added 2025/09/16 12:0 a.m.•3 views

PT-2025-38070

Name of the Vulnerable Software and Affected Versions: Campcodes Grocery Sales and Inventory System version 1.0 Description: A flaw has been found in Campcodes Grocery Sales and Inventory System 1.0. The manipulation of the ID argument in the /ajax.php?action=save product file causes SQL injectio...

9.8CVSS7.3AI score0.00061EPSS

Exploits1References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by