Lucene search
K

21 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:50 p.m.7 views

CVE-2026-7281

A vulnerability was determined in SourceCodester Pharmacy Sales and Inventory System 1.0. The impacted element is the function supplier of the file /index.php?page=supplier. Executing a manipulation of the argument Name can lead to cross site scripting. The attack may be performed from remote. Th...

4.8CVSS3.6AI score0.00206EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/28 1:15 p.m.4 views

CVE-2026-7281

A vulnerability was determined in SourceCodester Pharmacy Sales and Inventory System 1.0. The impacted element is the function supplier of the file /index.php?page=supplier. Executing a manipulation of the argument Name can lead to cross site scripting. The attack may be performed from remote. Th...

4.8CVSS3AI score0.00206EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/31 4:59 a.m.4 views

CVE-2026-30560

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the addsupplier.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HT...

5.4CVSS6AI score0.00252EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.5 views

SourceCodester Sales and Inventory System 安全漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a security vulnerability. This vulnerability stems from improper cleaning of the parameter msg i...

6.1CVSS5.6AI score0.00252EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:15 p.m.3 views

CVE-2026-4777

A security flaw has been discovered in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file viewsupplier.php of the component POST Parameter Handler. The manipulation of the argument searchtxt results in sql injection. The attack may be launched remotely. The...

6.5CVSS6.5AI score0.00245EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/24 9:42 p.m.2 views

CVE-2026-4777

A security flaw has been discovered in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file viewsupplier.php of the component POST Parameter Handler. The manipulation of the argument searchtxt results in sql injection. The attack may be launched remotely. The...

6.5CVSS6.5AI score0.00245EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/03/02 12:0 a.m.16 views

CVE-2026-26707

sourcecodester Pharmacy Point of Sale System v1.0 is vulnerable to SQL Injection in /pharmacy/viewsupplier.php...

0.0047EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/02 12:0 a.m.1 views

CVE-2026-26707

sourcecodester Pharmacy Point of Sale System v1.0 is vulnerable to SQL Injection in /pharmacy/viewsupplier.php...

9.8CVSS6AI score0.0047EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/12/03 12:26 a.m.8 views

CVE-2025-65215

Sourcecodester Web-based Pharmacy Product Management System v1.0 is vulnerable to Cross Site Scripting XSS in /productexpiry/add-supplier.php via the Supplier Name field...

6.1CVSS6.2AI score0.00185EPSS
Exploits1References1
NVD
NVD
added 2025/12/02 6:15 p.m.3 views

CVE-2025-65215

Sourcecodester Web-based Pharmacy Product Management System v1.0 is vulnerable to Cross Site Scripting XSS in /productexpiry/add-supplier.php via the Supplier Name field...

6.1CVSS0.00185EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/12/02 12:0 a.m.2 views

CVE-2025-65215

Sourcecodester Web-based Pharmacy Product Management System v1.0 is vulnerable to Cross Site Scripting XSS in /productexpiry/add-supplier.php via the Supplier Name field...

5.8AI score0.00185EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/12/02 12:0 a.m.9 views

CVE-2025-65215

Sourcecodester Web-based Pharmacy Product Management System v1.0 is vulnerable to Cross Site Scripting XSS in /productexpiry/add-supplier.php via the Supplier Name field...

0.00185EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.3 views

PT-2025-48737

Sourcecodester Web-based Pharmacy Product Management System v1.0 is vulnerable to Cross Site Scripting XSS in /product expiry/add-supplier.php via the Supplier Name field...

6.1CVSS6.2AI score0.00185EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-32975

Malicious code in bioql PyPI...

5.1CVSS4AI score0.0038EPSS
Exploits1References5
NVD
NVD
added 2024/10/21 1:15 a.m.16 views

CVE-2024-10197

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /managesupplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is...

5.1CVSS0.0038EPSS
Exploits1References5
Cvelist
Cvelist
added 2024/10/21 12:31 a.m.25 views

CVE-2024-10197 code-projects Pharmacy Management System Manage Supplier Page manage_supplier.php cross site scripting

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /managesupplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is...

5.1CVSS0.0038EPSS
Exploits1References5
CVE
CVE
added 2024/10/21 12:31 a.m.62 views

CVE-2024-10197

CVE-2024-10197 affects code-projects Pharmacy Management System 1.0, specifically the Manage Supplier Page component. The vulnerability is a cross-site scripting flaw in the /manage_supplier.php file caused by unsafely handling the address parameter, which can be exploited remotely and for which ...

5.1CVSS3.8AI score0.0038EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/21 12:31 a.m.10 views

CVE-2024-10197 code-projects Pharmacy Management System Manage Supplier Page manage_supplier.php cross site scripting

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /managesupplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is...

5.1CVSS6.2AI score0.0038EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/10/20 12:0 a.m.6 views

PT-2024-16110 · Code Projects · Pharmacy Management System

Name of the Vulnerable Software and Affected Versions: code-projects Pharmacy Management System version 1.0 Description: A security issue has been found in the Manage Supplier Page component, specifically in the file /manage supplier.php. The manipulation of the address argument leads to cross-si...

5.1CVSS4AI score0.0038EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/10/19 12:0 a.m.3 views

Pharmacy Management System SQL注入漏洞

Pharmacy Management System MPMS is a multilingual pharmacy management system by Mayuri K. Individual developer. A SQL injection vulnerability exists in Pharmacy Management System version 1.0, which originates from an SQL injection vulnerability contained in the id parameter of the...

9.8CVSS7AI score0.01309EPSS
Exploits2References6
Rows per page
Query Builder