CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

135 matches found

NVD•added 2026/04/08 10:16 p.m.•3 views

CVE-2026-5810

A flaw has been found in SourceCodester Sales and Inventory System 1.0. Affected is an unknown function of the file /delete.php of the component GET Parameter Handler. This manipulation of the argument ID causes cross site scripting. Remote exploitation of the attack is possible. The exploit has...

5.1CVSS0.0024EPSS

Exploits0References5

Cvelist•added 2026/04/08 10:0 p.m.•22 views

CVE-2026-5810 SourceCodester Sales and Inventory System GET Parameter delete.php cross site scripting

5.1CVSS0.0024EPSS

Exploits0References5

ATTACKERKB•added 2026/04/08 10:0 p.m.•1 views

CVE-2026-5810

5.1CVSS4.7AI score0.0024EPSS

Exploits0References5Affected Software1

Positive Technologies•added 2026/04/08 12:0 a.m.•4 views

PT-2026-31535

5.1CVSS4.7AI score0.0024EPSS

Exploits0References6

RedhatCVE•added 2026/03/31 4:59 a.m.•2 views

CVE-2026-30558

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addcustomer.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HT...

5.4CVSS6AI score0.00252EPSS

Exploits1References1

RedhatCVE•added 2026/03/31 4:59 a.m.•1 views

CVE-2026-30562

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addstock.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML...

9.3CVSS6AI score0.00321EPSS

Exploits1References1

RedhatCVE•added 2026/03/31 4:59 a.m.•2 views

CVE-2026-30561

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addpurchase.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HT...

5.4CVSS6AI score0.00252EPSS

Exploits1References1

RedhatCVE•added 2026/03/31 4:59 a.m.•4 views

CVE-2026-30566

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the viewcustomers.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script o...

6.1CVSS6AI score0.0021EPSS

Exploits1References1

RedhatCVE•added 2026/03/31 4:59 a.m.•3 views

CVE-2026-30564

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the viewpayments.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or...

6.1CVSS6AI score0.00205EPSS

Exploits1References1

EUVD•added 2026/03/30 6:31 p.m.•3 views

EUVD-2026-17098

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addsales.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML...

6AI score0.00266EPSS

Exploits1References2

EUVD•added 2026/03/30 6:31 p.m.•3 views

EUVD-2026-17135

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the index.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via...

6AI score0.00252EPSS

Exploits1References2

EUVD•added 2026/03/30 6:31 p.m.•3 views

EUVD-2026-17101

9.3CVSS6AI score0.00321EPSS

Exploits1References2

NVD•added 2026/03/30 4:16 p.m.•5 views

CVE-2026-30558

6.1CVSS0.00252EPSS

Exploits1References1

NVD•added 2026/03/30 4:16 p.m.•3 views

CVE-2026-30560

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addsupplier.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HT...

6.1CVSS0.00252EPSS

Exploits1References1

NVD•added 2026/03/30 4:16 p.m.•2 views

CVE-2026-30559

6.1CVSS0.00266EPSS

Exploits1References1

NVD•added 2026/03/30 4:16 p.m.•4 views

CVE-2026-30562

9.3CVSS0.00321EPSS

Exploits1References1

NVD•added 2026/03/30 3:16 p.m.•3 views

CVE-2026-30564

6.1CVSS0.00205EPSS

Exploits1References1

NVD•added 2026/03/30 3:16 p.m.•2 views

CVE-2026-30566

6.1CVSS0.0021EPSS

Exploits1References1

Cvelist•added 2026/03/30 12:0 a.m.•21 views

CVE-2026-30563

A Stored Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the updatedetails.php file. The application fails to sanitize the "website" parameter provided in a POST request. This allows authenticated attackers to inject...

0.00174EPSS

Exploits1References1

ATTACKERKB•added 2026/03/30 12:0 a.m.•1 views

CVE-2026-30563

6.1CVSS6AI score0.00174EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by