Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16073 matches found

CVE
CVEadded 2026/03/08 6:32 p.m.10 views

CVE-2026-3761

SourceCodester Client Database Management System 1.0 contains a flaw in the /superadmin_user_delete.php endpoint where manipulating the user_id parameter leads to improper authorization. The issue can be exploited remotely and the exploit has been published. Affects the described component; CVSS ...

5.5CVSS5.5AI score0.00337EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2026/03/08 6:32 p.m.34 views

CVE-2026-3761 SourceCodester Client Database Management System Endpoint superadmin_user_delete.php improper authorization

A flaw has been found in SourceCodester Client Database Management System 1.0. This issue affects some unknown processing of the file /superadminuserdelete.php of the component Endpoint. Executing a manipulation of the argument userid can lead to improper authorization. The attack may be performe...

5.5CVSS0.00337EPSS
Exploits1References5
EUVD
EUVDadded 2026/03/08 6:30 p.m.4 views

EUVD-2026-10254

A vulnerability was detected in SourceCodester Employee Task Management System 1.0. Impacted is an unknown function of the file /daily-attendance-report.php of the component GET Parameter Handler. The manipulation of the argument Date results in sql injection. The attack may be performed from...

5.8CVSS5.7AI score0.00313EPSS
Exploits1References6
EUVD
EUVDadded 2026/03/08 6:30 p.m.5 views

EUVD-2026-10258

A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This impacts an unknown function of the file /checkcustomerdetails.php of the component POST Handler. Executing a manipulation of the argument stockname1 can lead to sql injection. The attack can be launched remotely...

6.5CVSS6.5AI score0.00301EPSS
Exploits1References6
EUVD
EUVDadded 2026/03/08 6:30 p.m.3 views

EUVD-2026-10255

A flaw has been found in SourceCodester Employee Task Management System up to 1.0. The affected element is an unknown function of the file /daily-task-report.php of the component GET Parameter Handler. This manipulation of the argument Date causes sql injection. It is possible to initiate the...

5.8CVSS5.7AI score0.00313EPSS
Exploits1References6
EUVD
EUVDadded 2026/03/08 6:30 p.m.4 views

EUVD-2026-10256

A vulnerability has been found in SourceCodester Sales and Inventory System up to 1.0. The impacted element is an unknown function of the file /addsalesprint.php. Such manipulation of the argument sid leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

6.5CVSS6.5AI score0.00301EPSS
Exploits1References6
EUVD
EUVDadded 2026/03/08 6:30 p.m.4 views

EUVD-2026-10259

A vulnerability was identified in SourceCodester Sales and Inventory System up to 1.0. Affected is an unknown function of the file /checkitemdetails.php. The manipulation of the argument stockname1 leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and...

6.5CVSS6.5AI score0.00301EPSS
Exploits1References6
EUVD
EUVDadded 2026/03/08 6:30 p.m.6 views

EUVD-2026-10249

A vulnerability was determined in SourceCodester Simple Responsive Tourism Website 1.0. Affected by this vulnerability is an unknown functionality of the file /tourism/classes/Login.php?f=login of the component Login. This manipulation of the argument Username causes sql injection. The attack may...

7.5CVSS6.9AI score0.00379EPSS
Exploits1References7
OSV
OSVadded 2026/03/08 6:15 p.m.3 views

CVE-2026-3754

A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown function of the file /addstock.php. Performing a manipulation of the argument cost results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

8.8CVSS5.8AI score0.00301EPSS
Exploits1References5
OSV
OSVadded 2026/03/08 6:15 p.m.3 views

CVE-2026-3755

A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This impacts an unknown function of the file /checkcustomerdetails.php of the component POST Handler. Executing a manipulation of the argument stockname1 can lead to sql injection. The attack can be launched remotely...

8.8CVSS5.8AI score0.00301EPSS
Exploits1References5
OSV
OSVadded 2026/03/08 6:15 p.m.3 views

CVE-2026-3756

A vulnerability was identified in SourceCodester Sales and Inventory System up to 1.0. Affected is an unknown function of the file /checkitemdetails.php. The manipulation of the argument stockname1 leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and...

8.8CVSS5.7AI score0.00301EPSS
Exploits1References5
NVD
NVDadded 2026/03/08 6:15 p.m.3 views

CVE-2026-3756

A vulnerability was identified in SourceCodester Sales and Inventory System up to 1.0. Affected is an unknown function of the file /checkitemdetails.php. The manipulation of the argument stockname1 leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and...

8.8CVSS0.00301EPSS
Exploits1References5
NVD
NVDadded 2026/03/08 6:15 p.m.2 views

CVE-2026-3755

A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This impacts an unknown function of the file /checkcustomerdetails.php of the component POST Handler. Executing a manipulation of the argument stockname1 can lead to sql injection. The attack can be launched remotely...

8.8CVSS0.00301EPSS
Exploits1References5
CVE
CVEadded 2026/03/08 5:32 p.m.6 views

CVE-2026-3756

SourceCodester Sales and Inventory System (up to v1.0) contains a SQL injection vulnerability in the file /check_item_details.php. The issue arises from manipulating the stock_name1 argument in an unknown function within that file, which can be triggered remotely. Public exploitation is noted acr...

8.8CVSS6.5AI score0.00301EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2026/03/08 5:32 p.m.30 views

CVE-2026-3756 SourceCodester Sales and Inventory System check_item_details.php sql injection

A vulnerability was identified in SourceCodester Sales and Inventory System up to 1.0. Affected is an unknown function of the file /checkitemdetails.php. The manipulation of the argument stockname1 leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and...

6.5CVSS0.00301EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/03/08 5:32 p.m.3 views

CVE-2026-3756

A vulnerability was identified in SourceCodester Sales and Inventory System up to 1.0. Affected is an unknown function of the file /checkitemdetails.php. The manipulation of the argument stockname1 leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and...

6.5CVSS5.7AI score0.00301EPSS
Exploits1References5Affected Software1
CVE
CVEadded 2026/03/08 5:32 p.m.10 views

CVE-2026-3754

CVE-2026-3754 affects SourceCodester Sales and Inventory System 1.0. The vulnerability is an SQL injection in the /add_stock.php module, triggered by manipulating the cost argument, with remote exploitation and a publicly available exploit. Multiple feeds consistently describe an unknown function...

8.8CVSS6.5AI score0.00301EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/08 5:32 p.m.1 views

CVE-2026-3754

A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown function of the file /addstock.php. Performing a manipulation of the argument cost results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

6.5CVSS5.7AI score0.00301EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2026/03/08 5:16 p.m.3 views

CVE-2026-3753

A vulnerability has been found in SourceCodester Sales and Inventory System up to 1.0. The impacted element is an unknown function of the file /addsalesprint.php. Such manipulation of the argument sid leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS5.7AI score0.00301EPSS
Exploits1References5
NVD
NVDadded 2026/03/08 5:16 p.m.5 views

CVE-2026-3753

A vulnerability has been found in SourceCodester Sales and Inventory System up to 1.0. The impacted element is an unknown function of the file /addsalesprint.php. Such manipulation of the argument sid leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS0.00301EPSS
Exploits1References5
Rows per page
Query Builder