Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/03/31 4:59 a.m.5 views

CVE-2026-30565

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the viewsupplier.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or...

6.1CVSS6AI score0.0021EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/30 3:32 p.m.4 views

EUVD-2026-17104

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the viewsupplier.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or...

6.1CVSS6AI score0.0021EPSS
Exploits1References2
NVD
NVD
added 2026/03/30 3:16 p.m.9 views

CVE-2026-30565

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the viewsupplier.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or...

6.1CVSS0.0021EPSS
Exploits1References1
CVE
CVE
added 2026/03/30 12:0 a.m.6 views

CVE-2026-30565

CVE-2026-30565 affects SourceCodester Sales and Inventory System 1.0. The vulnerability is a reflected Cross-Site Scripting (XSS) in the file view_supplier.php via the limit parameter, where user input is not sanitized. Attack requires a crafted URL and could allow remote attackers to inject arbi...

6.1CVSS6AI score0.0021EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.6 views

PT-2026-29032

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view supplier.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script o...

6.1CVSS6AI score0.0021EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/30 12:0 a.m.7 views

CVE-2026-30565

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the viewsupplier.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or...

6.1CVSS6AI score0.0021EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/30 12:0 a.m.20 views

CVE-2026-30565

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the viewsupplier.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or...

0.0021EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/30 12:0 a.m.2 views

CVE-2026-30565

A Reflected Cross-Site Scripting XSS vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the viewsupplier.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or...

6AI score0.0021EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:15 p.m.3 views

CVE-2026-4777

A security flaw has been discovered in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file viewsupplier.php of the component POST Parameter Handler. The manipulation of the argument searchtxt results in sql injection. The attack may be launched remotely. The...

6.5CVSS6.5AI score0.00245EPSS
Exploits1References1
NVD
NVD
added 2026/03/24 10:16 p.m.6 views

CVE-2026-4777

A security flaw has been discovered in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file viewsupplier.php of the component POST Parameter Handler. The manipulation of the argument searchtxt results in sql injection. The attack may be launched remotely. The...

6.5CVSS0.00245EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/03/24 9:42 p.m.2 views

CVE-2026-4777

A security flaw has been discovered in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file viewsupplier.php of the component POST Parameter Handler. The manipulation of the argument searchtxt results in sql injection. The attack may be launched remotely. The...

6.5CVSS6.5AI score0.00245EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/03/24 9:42 p.m.12 views

CVE-2026-4777

CVE-2026-4777 affects SourceCodester Sales and Inventory System 1.0, specifically the POST Parameter Handler’s file view_supplier.php. The vulnerability arises from manipulating the searchtxt argument, enabling SQL injection. The issue can be exploited remotely and, according to the sources, the ...

6.5CVSS5.7AI score0.00245EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/24 9:42 p.m.7 views

CVE-2026-4777 SourceCodester Sales and Inventory System POST Parameter view_supplier.php sql injection

A security flaw has been discovered in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file viewsupplier.php of the component POST Parameter Handler. The manipulation of the argument searchtxt results in sql injection. The attack may be launched remotely. The...

6.5CVSS6.5AI score0.00245EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/24 12:0 a.m.5 views

PT-2026-27520

A security flaw has been discovered in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file view supplier.php of the component POST Parameter Handler. The manipulation of the argument searchtxt results in sql injection. The attack may be launched remotely. The...

6.5CVSS6.5AI score0.00245EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/03/24 12:0 a.m.12 views

SourceCodester Sales and Inventory System SQL注入漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a SQL injection vulnerability. This vulnerability arises from incorrect handling of parameters i...

6.5CVSS6.7AI score0.00245EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/03/03 1:48 a.m.5 views

CVE-2026-26707

sourcecodester Pharmacy Point of Sale System v1.0 is vulnerable to SQL Injection in /pharmacy/viewsupplier.php...

9.8CVSS6AI score0.0047EPSS
Exploits1References1
OSV
OSV
added 2026/03/02 6:16 p.m.2 views

CVE-2026-26707

sourcecodester Pharmacy Point of Sale System v1.0 is vulnerable to SQL Injection in /pharmacy/viewsupplier.php...

9.8CVSS5.8AI score0.0047EPSS
Exploits1References1
NVD
NVD
added 2026/03/02 6:16 p.m.5 views

CVE-2026-26707

sourcecodester Pharmacy Point of Sale System v1.0 is vulnerable to SQL Injection in /pharmacy/viewsupplier.php...

9.8CVSS0.0047EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.5 views

Pharmacy Point Of Sale System 安全漏洞

The Pharmacy Point of Sale System is a web-based application developed by Carlo Montero. It is used to help a pharmacy manage its sales transactions. Version 1.0 of the Pharmacy Point of Sale System has a security vulnerability, which stems from an SQL injection vulnerability in the...

9.8CVSS5.8AI score0.0047EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/02 12:0 a.m.16 views

CVE-2026-26707

sourcecodester Pharmacy Point of Sale System v1.0 is vulnerable to SQL Injection in /pharmacy/viewsupplier.php...

0.0047EPSS
Exploits1References1
Rows per page
Query Builder