CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

28 matches found

EUVD•added 2026/05/01 3:45 a.m.•4 views

EUVD-2026-26476

A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected is an unknown function of the file /ajax.php?action=savecustomer. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

7.5CVSS5.5AI score0.00259EPSS

Exploits0References5

ATTACKERKB•added 2026/05/01 3:45 a.m.•3 views

CVE-2026-7550

7.5CVSS5.5AI score0.00259EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/05/01 3:45 a.m.•3 views

CVE-2026-7550 SourceCodester Pharmacy Sales and Inventory System ajax.php save_customer sql injection

7.5CVSS6.8AI score0.00259EPSS

Exploits0References5

CVE•added 2026/05/01 3:45 a.m.•4 views

CVE-2026-7550

CVE-2026-7550 affects SourceCodester Pharmacy Sales and Inventory System 1.0. The vulnerability is in an unknown function of the file /ajax.php?action=save_customer where manipulation of the argument ID leads to an SQL injection. It is exploitable remotely and the exploit has been disclosed publi...

7.5CVSS7.3AI score0.00259EPSS

Exploits0References5

Cvelist•added 2026/05/01 3:45 a.m.•27 views

CVE-2026-7550 SourceCodester Pharmacy Sales and Inventory System ajax.php save_customer sql injection

7.5CVSS0.00259EPSS

Exploits0References5

CNNVD•added 2026/05/01 12:0 a.m.•5 views

SourceCodester Pharmacy Sales and Inventory System 注入漏洞

SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System has a SQL injection vulnerability, which arises from incorrect handling of the...

7.5CVSS7.2AI score0.00259EPSS

Exploits0References1

Positive Technologies•added 2026/05/01 12:0 a.m.•4 views

PT-2026-36297

Name of the Vulnerable Software and Affected Versions SourceCodester Pharmacy Sales and Inventory System version 1.0 Description An issue exists in the '/ajax.php?action=save customer' endpoint where manipulation of the ID argument allows for SQL injection, a technique used to interfere with the...

7.5CVSS7AI score0.00259EPSS

Exploits0References7

RedhatCVE•added 2026/03/28 4:56 a.m.•2 views

CVE-2026-30530

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file specifically the savecustomer action. The application fails to properly sanitize user input supplied to the "username" parameter. This allows an attacker to inject malicious SQL command...

9.8CVSS6AI score0.00476EPSS

Exploits1References1

NVD•added 2026/03/27 4:16 p.m.•3 views

CVE-2026-30530

9.8CVSS0.00476EPSS

Exploits1References1

Vulnrichment•added 2026/03/27 12:0 a.m.•2 views

CVE-2026-30530

6AI score0.00476EPSS

Exploits1References1

Positive Technologies•added 2026/03/27 12:0 a.m.•2 views

PT-2026-28403

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file specifically the save customer action. The application fails to properly sanitize user input supplied to the "username" parameter. This allows an attacker to inject malicious SQL comman...

9.8CVSS6AI score0.00476EPSS

Exploits1References2

CNNVD•added 2026/03/27 12:0 a.m.•4 views

SourceCodester Online Food Ordering System 安全漏洞

The SourceCodester Online Food Ordering System is an open-source online ordering system developed by SourceCodester. Version 1.0 of the SourceCodester Online Food Ordering System contains a security vulnerability. This vulnerability arises from the fact that the savecustomer operation in the...

9.8CVSS5.8AI score0.00476EPSS

Exploits1References1

ATTACKERKB•added 2026/03/27 12:0 a.m.•1 views

CVE-2026-30530

6AI score0.00476EPSS

Exploits1References2

Cvelist•added 2026/03/27 12:0 a.m.•19 views

CVE-2026-30530

0.00476EPSS

Exploits1References1

NVD•added 2025/10/08 10:15 a.m.•4 views

CVE-2025-11469

A weakness has been identified in SourceCodester Hotel and Lodge Management System 1.0. The affected element is an unknown function of the file /pages/savecustomer.php. Executing manipulation of the argument Contact can lead to sql injection. The attack can be executed remotely. The exploit has...

9.8CVSS0.00316EPSS

Exploits1References5

CVE•added 2025/10/08 10:2 a.m.•9 views

CVE-2025-11469

SourceCodester Hotel and Lodge Management System 1.0 contains a SQL injection flaw in /pages/save_customer.php caused by manipulation of the Contact parameter. It is exploitable remotely and publicly available, with potential high impact (as per CVSS data). No patch/version remediation details ar...

9.8CVSS6.7AI score0.00316EPSS

Exploits1References5Affected Software1

Positive Technologies•added 2025/10/08 12:0 a.m.•3 views

PT-2025-41242

Name of the Vulnerable Software and Affected Versions SourceCodester Hotel and Lodge Management System version 1.0 Description A flaw exists in SourceCodester Hotel and Lodge Management System 1.0. Manipulation of the Contact argument in an unknown function within the /pages/save customer.php fil...

9.8CVSS6.5AI score0.00316EPSS

Exploits1References10

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-29137

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00383EPSS

Exploits1References6

RedhatCVE•added 2025/09/16 10:49 p.m.•4 views

CVE-2025-10414

A vulnerability was found in Campcodes Grocery Sales and Inventory System 1.0. The impacted element is an unknown function of the file /ajax.php?action=savecustomer. Performing manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit...

9.8CVSS6.8AI score0.00383EPSS

Exploits1References1

OSV•added 2025/09/14 11:15 p.m.•2 views

CVE-2025-10414

9.8CVSS5.7AI score0.00383EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by