Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:45 a.m.4 views

CVE-2024-10021

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /php/managepurchase.php?action=search=VOUCHERNUMBER. The manipulation of the argument text leads to sql injection. The attack...

9.8CVSS7.2AI score0.0055EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/10/16 12:0 a.m.2 views

Code-Projects Pharmacy Management System SQL注入漏洞

Code-Projects Pharmacy Management System is a Code-Projects open source pharmacy management system. Code-Projects Pharmacy Management System version 1.0 has a SQL injection vulnerability that originates from the parameter text in the file /php/managepurchase.php?action=search&tag=VOUCHERNUMBER...

9.8CVSS7AI score0.0055EPSS
Exploits1References2
NVD
NVD
added 2023/09/12 3:15 a.m.15 views

CVE-2023-40625

S4CORE Manage Purchase Contracts App - versions 102, 103, 104, 105, 106, 107, does not perform necessary authorization checks for an authenticated user. This could allow an attacker to perform unintended actions resulting in escalation of privileges which has low impact on confidentiality and...

5.4CVSS5.6AI score0.00305EPSS
Exploits0References2
CVE
CVE
added 2023/09/12 2:0 a.m.43 views

CVE-2023-40625

CVE-2023-40625 involves the SAP S4CORE Manage Purchase Contracts App where versions 102–107 do not perform necessary authorization checks for authenticated users, enabling potential privilege escalation. Connected source PT-2023-27547 corroborates the affected versions and notes remediation: upgr...

5.4CVSS5.6AI score0.00305EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/09/12 2:0 a.m.28 views

CVE-2023-40625 Missing Authorization check in SAP Manage Purchase Contracts App

S4CORE Manage Purchase Contracts App - versions 102, 103, 104, 105, 106, 107, does not perform necessary authorization checks for an authenticated user. This could allow an attacker to perform unintended actions resulting in escalation of privileges which has low impact on confidentiality and...

5.4CVSS6AI score0.00305EPSS
Exploits0References2
Rows per page
Query Builder