18 matches found
CVE-2024-5101
A vulnerability was found in SourceCodester Simple Inventory System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file updateproduct.php. The manipulation of the argument ITEM leads to sql injection. The attack can be initiated remotely. The exploit has bee...
CVE-2024-5099
A vulnerability was found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updateprice.php. The manipulation of the argument ITEM leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2024-5097
A vulnerability, which was classified as problematic, was found in SourceCodester Simple Inventory System 1.0. Affected is an unknown function of the file /tableedit.phppage=editprice. The manipulation of the argument itemnumber leads to cross-site request forgery. It is possible to launch the...
CVE-2024-5098
A vulnerability has been found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to the public...
CVE-2024-6830
CVE-2024-6830 affects SourceCodester Simple Inventory Management System 1.0, specifically the Order Handler’s file action.php. The vulnerability arises from an unauthenticated manipulation of the order_id argument, leading to SQL injection. It is described as exploitable remotely, with public dis...
CVE-2024-5101
A vulnerability was found in SourceCodester Simple Inventory System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file updateproduct.php. The manipulation of the argument ITEM leads to sql injection. The attack can be initiated remotely. The exploit has bee...
CVE-2024-5101
CVE-2024-5101 affects SourceCodester Simple Inventory System v1.0, with a SQL injection in updateproduct.php triggered by the ITEM parameter. The issue allows remote exploitation and has been publicly disclosed; multiple sources corroborate the vulnerability. Root cause: input appended into SQL q...
CVE-2024-5100
CVE-2024-5100 is a SQL injection in SourceCodester Simple Inventory System 1.0, affecting the file tableedit.php . The issue arises from improper handling of the from and to parameters, allowing an attacker to manipulate input values to execute arbitrary SQL. The vulnerability is exploitable remo...
CVE-2024-5099
A vulnerability was found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updateprice.php. The manipulation of the argument ITEM leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2024-5099 SourceCodester Simple Inventory System updateprice.php sql injection
A vulnerability was found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updateprice.php. The manipulation of the argument ITEM leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2024-5099
CVE-2024-5099 concerns SourceCodester Simple Inventory System 1.0. The vulnerability resides in the file updateprice.php , where manipulating the argument ITEM results in an SQL injection. The issue is exploitable remotely, and public exploit information has been disclosed. Several connected sour...
CVE-2024-5099 SourceCodester Simple Inventory System updateprice.php sql injection
A vulnerability was found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updateprice.php. The manipulation of the argument ITEM leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2024-5098
A vulnerability has been found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to the public...
CVE-2024-5098 SourceCodester Simple Inventory System login.php sql injection
A vulnerability has been found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to the public...
CVE-2024-5097 SourceCodester Simple Inventory System tableedit.php#page=editprice cross-site request forgery
A vulnerability, which was classified as problematic, was found in SourceCodester Simple Inventory System 1.0. Affected is an unknown function of the file /tableedit.phppage=editprice. The manipulation of the argument itemnumber leads to cross-site request forgery. It is possible to launch the...
CVE-2024-5097
CVE-2024-5097 affects SourceCodester Simple Inventory System 1.0. The vulnerability is a cross-site request forgery triggered by manipulating the itemnumber parameter in /tableedit.php#page=editprice, allowing remote exploitation. Several connected sources confirm the flaw and public disclosure o...
PT-2024-34490 · Sourcecodester · Sourcecodester Simple Inventory System
Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Inventory System version 1.0 Description: A critical issue has been found in the SourceCodester Simple Inventory System, affecting the file tableedit.php. The manipulation of the from and to arguments leads to SQL...
PT-2024-34483 · Unknown · Sourcecodester Simple Inventory System
Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Inventory System version 1.0 Description: A critical issue has been found in the SourceCodester Simple Inventory System, affecting an unknown functionality of the file login.php. The manipulation of the username argument...