15 matches found
EUVD-2026-22014
A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=deletesales. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and...
CVE-2026-6188
A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=deletesales. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and...
CVE-2026-6188
A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=deletesales. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and...
CVE-2026-6188
SourceCodester Pharmacy Sales and Inventory System 1.0 contains a SQL injection in an unknown function of /ajax.php?action=delete_sales, triggered by manipulating the ID argument. The vulnerability can be exploited remotely and the exploit has been published. Affects the web application as descri...
SourceCodester Pharmacy Sales and Inventory System SQL注入漏洞
SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System contains a SQL injection vulnerability. This vulnerability arises from incorrect...
CVE-2026-2852
A vulnerability was identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This issue affects the function addSales/updateSales/deleteSales of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\SalesController.java of the component Sales Endpoint. The...
CVE-2026-2852
A vulnerability was identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This issue affects the function addSales/updateSales/deleteSales of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\SalesController.java of the component Sales Endpoint. The...
CVE-2026-2852
The CVE-2026-2852 issue affects yeqifu warehouse’s Sales Endpoint, specifically the SalesController.java functions addSales/updateSales/deleteSales in the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\SalesController.java. The vulnerability is caused by improper access cont...
warehouse 访问控制错误漏洞
Warehouse is a small-scale warehouse logistics management system developed by Yeqifu’s individual developer, based on Spring Boot. There is an access control vulnerability in Warehouse. This vulnerability stems from improper access control issues in the addSales, updateSales, and deleteSales...
EUVD-2025-27079
Malicious code in bioql PyPI...
CVE-2025-10031
A security vulnerability has been detected in Campcodes Grocery Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=deletesales. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...
CVE-2025-10031
A security vulnerability has been detected in Campcodes Grocery Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=deletesales. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...
CVE-2025-10031 Campcodes Grocery Sales and Inventory System ajax.php sql injection
A security vulnerability has been detected in Campcodes Grocery Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=deletesales. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...
CVE-2025-10031 Campcodes Grocery Sales and Inventory System ajax.php sql injection
A security vulnerability has been detected in Campcodes Grocery Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=deletesales. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...
PT-2025-36370
Name of the Vulnerable Software and Affected Versions: Campcodes Grocery Sales and Inventory System version 1.0 Description: A security issue exists in Campcodes Grocery Sales and Inventory System 1.0. The manipulation of the ID argument in the /ajax.php?action=delete sales file leads to SQL...