CVE-2024-10199 code-projects Pharmacy Management System Manage Medicines Page manage_medicine.php cross site scripting

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /managemedicine.php of the component Manage Medicines Page. The manipulation of the argument...

CVE-2024-10196 code-projects Pharmacy Management System add_new_invoice.php sql injection

A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /addnewinvoice.php. The manipulation of the argument text leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-10140

The CVE-2024-10140 entry affects code-projects’ Pharmacy Management System 1.0, with the vulnerability located in /manage_supplier.php. The root cause is an SQL injection caused by manipulating the id parameter, enabling remote exploitation. Public exploit details exist (e.g., a GitHub exploit ta...

CVE-2024-10140 code-projects Pharmacy Management System manage_supplier.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. Affected by this issue is some unknown functionality of the file /managesupplier.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2024-10139 code-projects Pharmacy Management System add_new_supplier.php sql injection

A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /addnewsupplier.php. The manipulation of the argument name leads to sql injection. The attack can be launched remotely. The...

CVE-2024-10138 code-projects Pharmacy Management System add_new_purchase.php sql injection

A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. Affected is an unknown function of the file /addnewpurchase.php?action=issupplier. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-10022 code-projects Pharmacy Management System manage_supplier.php sql injection

A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/managesupplier.php?action=search. The manipulation of the argument text leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-10021 code-projects Pharmacy Management System manage_purchase.php sql injection

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /php/managepurchase.php?action=search&tag=VOUCHERNUMBER. The manipulation of the argument text leads to sql injection. The...

CVE-2024-9976 code-projects Pharmacy Management System manage_customer.php sql injection

A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/managecustomer.php?action=search. The manipulation of the argument text leads to sql injection. It is possible to initiate the attack remotely. The...