299 matches found
CVE-2026-11495
The CVE affects CodeAstro Ingredients Stock Management System 1.0. Vulnerable component: /Ingredients-Stock/add_stock.php. Root cause: manipulation of the argument ID enables an SQL injection. Impact: data confidentiality/integrity/availability may be affected; attack vector is network with low c...
CVE-2026-10235
A flaw has been found in CodeAstro Ingredients Stock Management System 1.0. This vulnerability affects unknown code of the file /Ingredients-Stock/stockmanager.php. This manipulation of the argument txtsearchcategory causes sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2026-10235
CodeAstro Ingredients Stock Management System 1.0 contains an SQL injection in stock_manager.php via the txt_search_category parameter. The vulnerability affects unknown code in /Ingredients-Stock/stock_manager.php and can be exploited remotely; exploit has been published. No remediation details ...
PT-2026-45279
A flaw has been found in CodeAstro Ingredients Stock Management System 1.0. This vulnerability affects unknown code of the file /Ingredients-Stock/stock manager.php. This manipulation of the argument txt search category causes sql injection. The attack may be initiated remotely. The exploit has...
CVE-2020-24198
A persistent cross-site scripting vulnerability in Sourcecodester Stock Management System v1.0 allows remote attackers to inject arbitrary web script or HTML via the 'Brand Name.'...
CVE-2025-14567
A weakness has been identified in haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0. This affects an unknown function of the file /api/employees. Executing manipulation can lead to missing authentication. It is possible to launch the attack remotely. The exploit has...
CVE-2025-14568
A security vulnerability has been detected in haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0. This impacts an unknown function of the file model/User.php. The manipulation of the argument employeeid/id/admin leads to sql injection. The attack can be initiated...
CVE-2025-14568 haxxorsid Stock-Management-System User.php sql injection
A security vulnerability has been detected in haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0. This impacts an unknown function of the file model/User.php. The manipulation of the argument employeeid/id/admin leads to sql injection. The attack can be initiated...
CVE-2025-14568 haxxorsid Stock-Management-System User.php sql injection
A security vulnerability has been detected in haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0. This impacts an unknown function of the file model/User.php. The manipulation of the argument employeeid/id/admin leads to sql injection. The attack can be initiated...
CVE-2025-14567
A weakness has been identified in haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0. This affects an unknown function of the file /api/employees. Executing manipulation can lead to missing authentication. It is possible to launch the attack remotely. The exploit has...
CVE-2025-14567 haxxorsid Stock-Management-System employees missing authentication
A weakness has been identified in haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0. This affects an unknown function of the file /api/employees. Executing manipulation can lead to missing authentication. It is possible to launch the attack remotely. The exploit has...
CVE-2025-14567
CVE-2025-14567 affects haxxorsid Stock-Management-System. Affected component is an authentication-sensitive area in the file /api/employees, where a missing authentication condition allows manipulation with remote reach. The description notes exploitation is possible remotely and that the vendor ...
CVE-2025-14567 haxxorsid Stock-Management-System employees missing authentication
A weakness has been identified in haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0. This affects an unknown function of the file /api/employees. Executing manipulation can lead to missing authentication. It is possible to launch the attack remotely. The exploit has...
Stock-Management-System 访问控制错误漏洞
Stock-Management-System is an inventory management system by the individual developer Mr Erick. An access control error vulnerability exists in Stock-Management-System version fbbbf213e9c93b87183a3891f77e3cc7095f22b0, which stems from a lack of authentication in files/api/employees, which could...
Stock-Management-System SQL注入漏洞
Stock-Management-System is an inventory management system by Mr Erick Personal Developer. Stock-Management-System version fbbbf213e9c93b87183a3891f77e3cc7095f22b0 has a SQL injection vulnerability that stems from incorrect manipulation of the parameter employeeid/id/admin in the file...
PT-2025-50960
Name of the Vulnerable Software and Affected Versions haxxorsid Stock-Management-System versions prior to fbbbf213e9c93b87183a3891f77e3cc7095f22b0 Description A security issue exists in haxxorsid Stock-Management-System. The manipulation of the employee id, id, or admin argument can lead to SQL...
EUVD-2020-16569
Malware in sbrugna...
EUVD-2020-16932
Malware in sbrugna...
EUVD-2020-16933
Malware in sbrugna...
EUVD-2020-16568
Malware in sbrugna...