CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16072 matches found

RedhatCVE•added 2025/04/08 9:32 a.m.•15 views

CVE-2025-3314

A vulnerability has been found in SourceCodester Apartment Visitor Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /forgotpw.php. The manipulation of the argument secode leads to sql injection. The attack can be launched...

9.8CVSS7.7AI score0.00432EPSS

Exploits1References1

NVD•added 2025/04/07 9:15 p.m.•6 views

CVE-2025-3383

A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /search/searchsales.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated...

9.8CVSS0.00498EPSS

Exploits1References5

Cvelist•added 2025/04/07 8:31 p.m.•14 views

CVE-2025-3383 SourceCodester Web-based Pharmacy Product Management System search_sales.php sql injection

7.5CVSS0.00498EPSS

Exploits1References5

Vulnrichment•added 2025/04/07 8:31 p.m.•7 views

CVE-2025-3383 SourceCodester Web-based Pharmacy Product Management System search_sales.php sql injection

7.5CVSS7.7AI score0.00498EPSS

Exploits1References5

CVE•added 2025/04/07 8:31 p.m.•53 views

CVE-2025-3383

SourceCodester Web-based Pharmacy Product Management System 1.0 contains a SQL injection in the /search/search_sales.php handler, triggered by manipulating the Name argument. Impact is described as remote exploitation with high/severe risk across multiple CVE sources, with exploitation details al...

9.8CVSS7.7AI score0.00498EPSS

Exploits1References5Affected Software1

RedhatCVE•added 2025/04/07 10:53 a.m.•18 views

CVE-2025-3298

A vulnerability has been found in SourceCodester Online Eyewear Shop 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /oews/classes/Master.php?f=saveproduct of the component Registration Handler. The manipulation of the argument email leads...

5.3CVSS7AI score0.00338EPSS

Exploits1References1

RedhatCVE•added 2025/04/07 9:27 a.m.•22 views

CVE-2025-3297

A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /classes/Master.php?f=saveproduct. The manipulation of the argument brand leads to cross site scripting. It is possible to launch the attack...

5.1CVSS6.3AI score0.00338EPSS

Exploits1References1

RedhatCVE•added 2025/04/07 8:28 a.m.•18 views

CVE-2025-3296

A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This issue affects some unknown processing of the file /classes/Users.php?f=deletecustomer. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely...

6.5CVSS7.4AI score0.00319EPSS

Exploits1References1

CNNVD•added 2025/04/07 12:0 a.m.•3 views

SourceCodester Web-based Pharmacy Product Management System 注入漏洞

SourceCodester Web-based Pharmacy Product Management System is a SourceCodester open source Web-based pharmacy product management system. An injection vulnerability exists in SourceCodester Web-based Pharmacy Product Management System version 1.0, which stems from an incorrect manipulation of the...

9.8CVSS7.9AI score0.00498EPSS

Exploits1References5

Positive Technologies•added 2025/04/07 12:0 a.m.•2 views

PT-2025-15299 · Sourcecodester · Sourcecodester Web-Based Pharmacy Product Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Web-based Pharmacy Product Management System version 1.0 Description: A critical issue affects the processing of the file /search/search sales.php, where the manipulation of the Name argument leads to SQL injection. The attack...

9.8CVSS7.6AI score0.00498EPSS

Exploits1References12

RedhatCVE•added 2025/04/06 12:22 p.m.•18 views

CVE-2025-3244

A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /add-admin.php of the component Create User Page. The manipulation of the argument Avatar leads to...

8.8CVSS7AI score0.00438EPSS

Exploits1References1

OSV•added 2025/04/06 10:15 a.m.•3 views

CVE-2025-3315

A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /view-report.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack may be launched...

9.8CVSS5.8AI score0.00432EPSS

Exploits1References5

NVD•added 2025/04/06 10:15 a.m.•12 views

CVE-2025-3315

9.8CVSS0.00432EPSS

Exploits1References5

Vulnrichment•added 2025/04/06 10:0 a.m.•3 views

CVE-2025-3315 SourceCodester Apartment Visitor Management System view-report.php sql injection

7.5CVSS7.3AI score0.00432EPSS

Exploits1References5

CVE•added 2025/04/06 10:0 a.m.•72 views

CVE-2025-3315

The CVE-2025-3315 entry concerns SourceCodester Apartment Visitor Management System v1.0. Affected component: /view-report.php; root cause: improper handling of fromdate/todate parameters enables SQL injection. Impact is described as critical with potential remote exploitation and publicly disclo...

9.8CVSS7.5AI score0.00432EPSS

Exploits1References5Affected Software1

Cvelist•added 2025/04/06 10:0 a.m.•21 views

CVE-2025-3315 SourceCodester Apartment Visitor Management System view-report.php sql injection

7.5CVSS0.00432EPSS

Exploits1References5

OSV•added 2025/04/06 9:15 a.m.•1 views

CVE-2025-3314

9.8CVSS5.8AI score0.00432EPSS

Exploits1References5

NVD•added 2025/04/06 9:15 a.m.•10 views

CVE-2025-3314