CVE-2022-31339

Simple Inventory System v1.0 is vulnerable to SQL Injection via /inventory/login.php...

CVE-2022-31340

Simple Inventory System v1.0 is vulnerable to SQL Injection via /inventory/tableeditajax.php...

EUVD-2025-197791

A vulnerability was determined in CodeAstro Simple Inventory System 1.0. The impacted element is an unknown function of the file /index.php of the component Login. Executing manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-13280

A vulnerability was determined in CodeAstro Simple Inventory System 1.0. The impacted element is an unknown function of the file /index.php of the component Login. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has bee...

CVE-2025-11610

A security flaw has been discovered in SourceCodester Simple Inventory System 1.0. This issue affects some unknown processing of the file /brand.php. The manipulation of the argument editBrandName results in sql injection. The attack can be executed remotely. The exploit has been released to the...

EUVD-2025-33872

A security flaw has been discovered in SourceCodester Simple Inventory System 1.0. This issue affects some unknown processing of the file /brand.php. The manipulation of the argument editBrandName results in sql injection. The attack can be executed remotely. The exploit has been released to the...

SourceCodester Simple Inventory System SQL注入漏洞

SourceCodester Simple Inventory System is a SourceCodester open source simple inventory system. A SQL injection vulnerability exists in SourceCodester Simple Inventory System version 1.0, which stems from incorrect manipulation of the parameter editBrandName in the file /brand.php, which could le...

PT-2025-41696

Name of the Vulnerable Software and Affected Versions SourceCodester Simple Inventory System version 1.0 Description A security flaw exists due to the manipulation of the editBrandName argument in the processing of the file '/brand.php', leading to a SQL injection. The attack can be executed...

EUVD-2022-52875

Malicious code in bioql PyPI...

EUVD-2024-46355

Malicious code in bioql PyPI...

EUVD-2022-52876

Malicious code in bioql PyPI...

EUVD-2024-46354

Malicious code in bioql PyPI...

EUVD-2024-46358

Malicious code in bioql PyPI...

EUVD-2024-46357

Malicious code in bioql PyPI...

CVE-2024-5101

A vulnerability was found in SourceCodester Simple Inventory System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file updateproduct.php. The manipulation of the argument ITEM leads to sql injection. The attack can be initiated remotely. The exploit has bee...

CVE-2024-5100

A vulnerability was found in SourceCodester Simple Inventory System 1.0. It has been classified as critical. This affects an unknown part of the file tableedit.php. The manipulation of the argument from/to leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...

CVE-2024-5099

A vulnerability was found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updateprice.php. The manipulation of the argument ITEM leads to sql injection. The attack may be launched remotely. The exploit has...

CVE-2024-5097

A vulnerability, which was classified as problematic, was found in SourceCodester Simple Inventory System 1.0. Affected is an unknown function of the file /tableedit.phppage=editprice. The manipulation of the argument itemnumber leads to cross-site request forgery. It is possible to launch the...

CVE-2024-5098

A vulnerability has been found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to the public...

CVE-2024-5101

CVE-2024-5101 affects SourceCodester Simple Inventory System v1.0, with a SQL injection in updateproduct.php triggered by the ITEM parameter. The issue allows remote exploitation and has been publicly disclosed; multiple sources corroborate the vulnerability. Root cause: input appended into SQL q...