Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2026/04/01 12:0 a.m.2 views

CVE-2026-30573

CVE-2026-30573 affects SourceCodester Pharmacy Product Management System 1.0. The vulnerability is in the add-sales.php logic where the application fails to validate the parameters "txtprice" and "txttotalcost", permitting submission of negative values for sales transactions. Consequences include...

7.5CVSS5.9AI score0.0007EPSS
Exploits1References1Affected Software1
CNNVD
CNNVDadded 2023/06/30 12:0 a.m.2 views

POS Codekop 访问控制错误漏洞

POS Codekop is an application. A security vulnerability exists in POS Codekop version v2.0 that stems from a corrupted authentication mechanism that allows an unauthenticated attacker to download sales data...

7.5CVSS7.3AI score0.8448EPSS
Exploits1References3
CNNVD
CNNVDadded 2022/08/18 12:0 a.m.1 views

编号撤回

InventoryManagementSystem is an inventory management system by Sajan Rajbhandari, an individual developer. Provides an easy way to track products, suppliers, customers, and purchasing and sales information. This CVE number has been withdrawn...

8.2AI score
Exploits0References3
Hacker One
Hacker Oneadded 2020/09/05 12:52 p.m.18 views

Valve: Access to microtransaction sales data for lots of apps from 2014 to present at /valvefinance/sanity/

The Steamworks Product Data web site had an URL route with insufficient access controls, which would allow an authenticated partner to view data for games which they might not otherwise have permissions to view. After mitigation, an audit of accesses to this URL route showed no accesses by partie...

3.3AI score
Exploits0
CNVD
CNVDadded 2019/10/16 12:0 a.m.2 views

Unspecified Vulnerability in Oracle Hospitality Reporting and Analytics (CNVD-2019-36657)

Oracle Hospitality Reporting and Analytics is a web-based application that centralizes point-of-sale POS data, provides operational and analytical insights into business operations, and improves efficiencies by delivering information to all roles within an organization. An unspecified vulnerabili...

6.1CVSS6.5AI score0.0079EPSS
Exploits0References1
Openbugbounty
Openbugbountyadded 2018/02/12 6:46 p.m.14 views

breednet.com.au XSS vulnerability

Open Bug Bounty ID: OBB-558120 Description| Value ---|--- Affected Website:| breednet.com.au Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Hacker One
Hacker Oneadded 2017/08/26 7:54 a.m.36 views

Zomato: [www.zomato.com] Unauthenticated access to Internal Sales Data of Zomato through an unrestricted endpoint

Internal sales dashboard was open. While running through the JS file I discovered a new endpoint, while reading further I found that it shouldn't have been accessible by anyone else apart from the admin. So, I started to find the correct Post Request and within few mins of fuzzing, I found the...

6.9AI score
Exploits0
Rows per page
Query Builder