Lucene search
K

210 matches found

Vulnrichment
Vulnrichment
added 2025/08/13 10:2 p.m.3 views

CVE-2025-8928 code-projects Medical Store Management System Update Medicines UpdateMedicines.java sql injection

A vulnerability was identified in code-projects Medical Store Management System 1.0. This affects an unknown part of the file UpdateMedicines.java of the component Update Medicines Page. The manipulation of the argument productNameTxt leads to sql injection. It is possible to initiate the attack...

6.5CVSS7.6AI score0.00352EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/08/13 12:0 a.m.6 views

PT-2025-33098 · Code Projects · Medical Store Management System

Name of the Vulnerable Software and Affected Versions: code-projects Medical Store Management System version 1.0 Description: A vulnerability has been found in code-projects Medical Store Management System 1.0. This vulnerability affects unknown code of the file MainPanel.java. The manipulation o...

8.8CVSS8.1AI score0.00352EPSS
Exploits1References11
CNNVD
CNNVD
added 2025/08/13 12:0 a.m.5 views

Code-Projects Medical Store Management System 注入漏洞

Medical Store Management System is a pharmacy management system. Medical Store Management System suffers from a SQL injection vulnerability that originates from a misuse of the parameter productNameTxt in the file UpdateMedicines.java resulting in a SQL injection attack, which can be exploited by...

8.8CVSS7.7AI score0.00352EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/08/13 12:0 a.m.6 views

PT-2025-33097 · Code Projects · Medical Store Management System

Name of the Vulnerable Software and Affected Versions: code-projects Medical Store Management System version 1.0 Description: A vulnerability was identified in code-projects Medical Store Management System 1.0, affecting an unknown part of the file UpdateMedicines.java within the Update Medicines...

8.8CVSS6.7AI score0.00352EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2025/05/23 10:28 a.m.9 views

CVE-2024-7897

A vulnerability classified as critical has been found in Tosei Online Store Management System ネット店舗管理システム 4.02/4.03/4.04. This affects an unknown part of the file /cgi-bin/toseikikai.php. The manipulation of the argument kikaibangou leads to command injection. It is possible to initiate the attac...

8.8CVSS7.4AI score0.02595EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 9:50 a.m.7 views

CVE-2024-7896

A vulnerability was found in Tosei Online Store Management System ネット店舗管理システム 4.02/4.03/4.04. It has been rated as critical. Affected by this issue is some unknown functionality of the file /cgi-bin/p1ftpserver.php. The manipulation of the argument adrtxt leads to command injection. The attack ma...

8.8CVSS8.9AI score0.0225EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 5:5 a.m.9 views

CVE-2023-49543

Incorrect access control in Book Store Management System v1 allows attackers to access unauthorized pages and execute administrative functions without authenticating...

9.8CVSS7.1AI score0.00963EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 3:17 a.m.6 views

CVE-2023-23024

Book Store Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in /bsmsci/index.php/book. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the writer parameter...

6.1CVSS6AI score0.00423EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:19 a.m.9 views

CVE-2022-3452

A vulnerability was found in SourceCodester Book Store Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /category.php. The manipulation of the argument categoryname leads to cross site scripting. The attack can be initiated remotely...

5.4CVSS6.4AI score0.00389EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:18 a.m.15 views

CVE-2022-45613

Book Store Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in /bsmsci/index.php/book. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the publisher parameter...

5.4CVSS6AI score0.00459EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:16 a.m.5 views

CVE-2022-45215

A cross-site scripting XSS vulnerability in Book Store Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter under the Add New System User module...

5.4CVSS5.8AI score0.00377EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:16 a.m.4 views

CVE-2022-45225

Book Store Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability in /bsmsci/index.php/book. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the booktitle parameter...

6.1CVSS6.1AI score0.00484EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:6 a.m.11 views

CVE-2022-25394

Medical Store Management System v1.0 was discovered to contain a SQL injection vulnerability via the cid parameter under customer-add.php...

10CVSS8.3AI score0.01513EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:5 p.m.6 views

CVE-2022-3453

A vulnerability was found in SourceCodester Book Store Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /transcation.php. The manipulation of the argument buyername leads to cross site scripting. The attack may be initiated remotely...

5.4CVSS6.3AI score0.00348EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:45 p.m.7 views

CVE-2022-45217

A cross-site scripting XSS vulnerability in Book Store Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Level parameter under the Add New System User module...

5.4CVSS5.8AI score0.00548EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/11 8:20 a.m.29 views

CVE-2025-4472

A vulnerability was found in code-projects Departmental Store Management System 1.0. It has been classified as critical. Affected is the function bill. The manipulation of the argument Item Code leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The explo...

7.8CVSS7.1AI score0.00407EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/11 8:20 a.m.24 views

CVE-2025-4471

A vulnerability, which was classified as critical, has been found in code-projects Jewelery Store Management system 1.0. Affected by this issue is some unknown functionality of the component Search Item View. The manipulation of the argument str2 leads to stack-based buffer overflow. The attack...

7.8CVSS7.1AI score0.00309EPSS
Exploits0References1
OSV
OSV
added 2025/05/09 8:15 a.m.5 views

CVE-2025-4471

A vulnerability, which was classified as critical, has been found in code-projects Jewelery Store Management system 1.0. Affected by this issue is some unknown functionality of the component Search Item View. The manipulation of the argument str2 leads to stack-based buffer overflow. The attack...

7.8CVSS5.9AI score0.00309EPSS
Exploits0References5
NVD
NVD
added 2025/05/09 8:15 a.m.17 views

CVE-2025-4472

A vulnerability was found in code-projects Departmental Store Management System 1.0. It has been classified as critical. Affected is the function bill. The manipulation of the argument Item Code leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The explo...

7.8CVSS0.00407EPSS
Exploits1References5
NVD
NVD
added 2025/05/09 8:15 a.m.15 views

CVE-2025-4471

A vulnerability, which was classified as critical, has been found in code-projects Jewelery Store Management system 1.0. Affected by this issue is some unknown functionality of the component Search Item View. The manipulation of the argument str2 leads to stack-based buffer overflow. The attack...

7.8CVSS0.00309EPSS
Exploits0References5
Rows per page
Query Builder