CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/03/09 1:2 a.m.•7 views

CVE-2026-3792

SourceCodester Sales and Inventory System 1.0 contains an SQL injection in purchase_invoice.php (GET parameter handler) via the purchaseid argument. The flaw is exploitable remotely and exploit code is public (PROOF-OF-CONCEPT). Affected component is the purchase_invoice.php file; root cause is u...

8.8CVSS6.4AI score0.00037EPSS

ATTACKERKB•added 2026/03/09 12:32 a.m.•2 views

CVE-2026-3791

A vulnerability has been found in SourceCodester Sales and Inventory System 1.0. Affected by this issue is some unknown functionality of the file dashboard.php of the component Search. The manipulation of the argument searchtxt leads to sql injection. The attack is possible to be carried out...

6.5CVSS6.4AI score0.00037EPSS

CVE•added 2026/03/09 12:32 a.m.•14 views

CVE-2026-3791

CVE-2026-3791 affects SourceCodester Sales and Inventory System 1.0, specifically the file dashboard.php in the Search component. The issue arises from manipulating the argument searchtxt , causing a SQL Injection . The vulnerability can be exploited remotely, and the exploit has been disclosed p...

8.8CVSS6.4AI score0.00037EPSS

EUVD•added 2026/03/09 12:30 a.m.•2 views

EUVD-2026-10280

A flaw has been found in SourceCodester Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file checksupplierdetails.php of the component POST Parameter Handler. Executing a manipulation of the argument stockname1 can lead to sql injection. The attac...

8.8CVSS5.8AI score0.00037EPSS

EUVD•added 2026/03/09 12:30 a.m.•3 views

EUVD-2026-10274

A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. This vulnerability affects unknown code of the file /accomodation.php. Such manipulation of the argument q leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the...

8.8CVSS5.7AI score0.00037EPSS

NVD•added 2026/03/09 12:16 a.m.•2 views

CVE-2026-3790

8.8CVSS0.00037EPSS

ATTACKERKB•added 2026/03/09 12:2 a.m.•1 views

CVE-2026-3790

6.5CVSS6.5AI score0.00037EPSS

Vulnrichment•added 2026/03/09 12:2 a.m.•1 views

CVE-2026-3790 SourceCodester Sales and Inventory System POST Parameter check_supplier_details.php sql injection

6.5CVSS5.8AI score0.00037EPSS

Cvelist•added 2026/03/09 12:2 a.m.•28 views

CVE-2026-3790 SourceCodester Sales and Inventory System POST Parameter check_supplier_details.php sql injection

6.5CVSS0.00037EPSS

CVE•added 2026/03/09 12:2 a.m.•9 views

CVE-2026-3790

SourceCodester Sales and Inventory System 1.0 contains a SQL injection vulnerability in the POST handler, specifically in check_supplier_details.php where modifying the stock_name1 argument enables remote exploitation. The flaw arises from unsafely handling input, allowing an attacker to manipula...

8.8CVSS6.5AI score0.00037EPSS

CNNVD•added 2026/03/09 12:0 a.m.•2 views

SourceCodester Patients Waiting Area Queue Management System 授权问题漏洞

The SourceCodester Patients Waiting Area Queue Management System is an open-source system developed by SourceCodester for managing patient waiting queues. Version 1.0 of the SourceCodester Patients Waiting Area Queue Management System contains a vulnerability related to authorization issues. This...

6.9CVSS6AI score0.00016EPSS

Positive Technologies•added 2026/03/09 12:0 a.m.•2 views

PT-2026-24061

A vulnerability has been found in SourceCodester Resort Reservation System 1.0. The affected element is an unknown function of the file /?page=manage reservation of the component Reservation Management Module. Such manipulation of the argument ID leads to cross site scripting. The attack may be...

5.1CVSS4.1AI score0.00014EPSS

Positive Technologies•added 2026/03/09 12:0 a.m.•2 views

PT-2026-23990

Name of the Vulnerable Software and Affected Versions SourceCodester Sales and Inventory System version 1.0 Description A flaw exists in SourceCodester Sales and Inventory System 1.0 that allows for SQL injection. This issue is located within the check supplier details.php file and involves the...

8.8CVSS6.5AI score0.00037EPSS

Exploits1References13

CNNVD•added 2026/03/09 12:0 a.m.•3 views

SourceCodester Payroll Management System 代码注入漏洞

SourceCodester Payroll Management System is an open-source payroll management system developed by SourceCodester. Version 1.0 of the SourceCodester Payroll Management System has a code injection vulnerability. This vulnerability stems from incorrect handling of parameter IDs in the file...

6.1CVSS5.7AI score0.00056EPSS

CNNVD•added 2026/03/09 12:0 a.m.•3 views

SourceCodester Sales and Inventory System SQL注入漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a SQL injection vulnerability. This vulnerability arises from incorrect handling of the paramete...

8.8CVSS6.7AI score0.00037EPSS

Positive Technologies•added 2026/03/09 12:0 a.m.•3 views

PT-2026-23998

Name of the Vulnerable Software and Affected Versions SourceCodester Sales and Inventory System version 1.0 Description A flaw exists in SourceCodester Sales and Inventory System 1.0 related to the handling of a GET parameter. Specifically, manipulation of the sellid argument within the sales...

8.8CVSS6.5AI score0.00013EPSS

Exploits1References11

CNNVD•added 2026/03/09 12:0 a.m.•3 views

SourceCodester Resort Reservation System 代码问题漏洞

The SourceCodester Resort Reservation System is an open-source resort reservation system developed by SourceCodester. Version 1.0 of the SourceCodester Resort Reservation System has code-related vulnerabilities. These vulnerabilities stem from incorrect handling of parameters in the file...

8.8CVSS6.7AI score0.00048EPSS