CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

84 matches found

CVE•added 2026/04/28 11:0 a.m.•2 views

CVE-2026-7267

Technical details are not publicly available in the provided documents. Monitor for updates.

6.5CVSS6.3AI score0.00036EPSS

Exploits0References5

Cvelist•added 2026/04/28 11:0 a.m.•27 views

CVE-2026-7267 SourceCodester Pizzafy Ecommerce System view_prod.php sql injection

A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. This affects an unknown function of the file /viewprod.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

6.5CVSS0.00036EPSS

Exploits0References5

Positive Technologies•added 2026/04/28 12:0 a.m.•0 views

PT-2026-35711

A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. This affects an unknown function of the file /view prod.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

6.5CVSS6.3AI score0.00036EPSS

Exploits0References6

RedhatCVE•added 2026/03/28 4:56 a.m.•0 views

CVE-2026-30532

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/viewproduct.php file via the "id" parameter...

9.8CVSS6AI score0.00047EPSS

Exploits1References1

RedhatCVE•added 2026/03/28 4:56 a.m.•1 views

CVE-2026-30567

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0 in the viewproduct.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL...

6.1CVSS6AI score0.00018EPSS

Exploits1References1

EUVD•added 2026/03/27 6:31 p.m.•2 views

EUVD-2026-16728

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Inventory System 1.0 in the viewproduct.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL...

6AI score0.00018EPSS

Exploits1References2

EUVD•added 2026/03/27 6:31 p.m.•0 views

EUVD-2026-16680

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/viewproduct.php file via the "id" parameter...

9.8CVSS6AI score0.00047EPSS

Exploits1References2

NVD•added 2026/03/27 6:16 p.m.•4 views

CVE-2026-30567

6.1CVSS0.00018EPSS

Exploits1References1

NVD•added 2026/03/27 4:16 p.m.•1 views

CVE-2026-30532

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/viewproduct.php file via the "id" parameter...

9.8CVSS0.00047EPSS

Exploits1References1

CVE•added 2026/03/27 12:0 a.m.•2 views

CVE-2026-30532

CVE-2026-30532 describes a SQL Injection vulnerability in SourceCodester Online Food Ordering System v1.0, exposed via the admin/view_product.php file when using the id parameter. The vulnerability is documented as affecting the admin view_Product flow, with the root cause being unsafe constructi...

9.8CVSS6AI score0.00047EPSS

Exploits1References1Affected Software1

CVE•added 2026/03/27 12:0 a.m.•2 views

CVE-2026-30567

CVE-2026-30567 describes a reflected XSS in SourceCodester Sales and Inventory System 1.0, specifically in the view_product.php script via the input parameter “limit.” The root cause is lack of input sanitization, allowing an attacker to inject arbitrary script or HTML through a crafted URL. The ...

6.1CVSS6AI score0.00018EPSS

Exploits1References1Affected Software1

CNNVD•added 2026/03/27 12:0 a.m.•3 views

SourceCodester Inventory System 跨站脚本漏洞

The SourceCodester Inventory System is an open-source inventory system developed by SourceCodester. Version 1.0 of the SourceCodester Inventory System has a cross-site scripting vulnerability. This vulnerability stems from the improper cleanup of the limit parameter in the viewproduct.php file,...

6.1CVSS5.6AI score0.00018EPSS

Exploits1References2

CNNVD•added 2026/03/27 12:0 a.m.•2 views

SourceCodester Online Food Ordering System 安全漏洞

The SourceCodester Online Food Ordering System is an open-source online meal ordering system developed by SourceCodester. Version 1.0 of the SourceCodester Online Food Ordering System contains a security vulnerability. This vulnerability arises from the improper cleaning of the id parameter in th...

9.8CVSS5.8AI score0.00047EPSS

Exploits1References1

ATTACKERKB•added 2026/03/27 12:0 a.m.•1 views

CVE-2026-30532

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/viewproduct.php file via the "id" parameter...

6AI score0.00047EPSS

Exploits1References2

Cvelist•added 2026/03/27 12:0 a.m.•20 views

CVE-2026-30567

0.00018EPSS

Exploits1References1

Positive Technologies•added 2026/03/27 12:0 a.m.•0 views

PT-2026-28408

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Inventory System 1.0 in the view product.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL...

6AI score0.00018EPSS

Exploits1References2

Cvelist•added 2026/03/27 12:0 a.m.•17 views

CVE-2026-30532

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the admin/viewproduct.php file via the "id" parameter...

0.00047EPSS

Exploits1References1