CVE-2026-4013 SourceCodester Web-based Pharmacy Product Management System add_admin.php improper authorization

A vulnerability was identified in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown function of the file addadmin.php. Such manipulation leads to improper authorization. The attack may be launched remotely...

CVE-2026-3401

Technical details about CVE-2026-3401 are not publicly available in the provided documents. No concrete information on affected components, root cause, or fixes is included. Monitor for updates from linked sources.

CVE-2025-13300

A vulnerability has been found in itsourcecode Web-Based Internet Laboratory Management System 1.0. Affected is an unknown function of the file /settings/controller.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-11424 code-projects Web-Based Inventory and POS System login.php sql injection

A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing manipulation of the argument emailid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclos...

EUVD-2024-31513

Malicious code in bioql PyPI...

EUVD-2022-48121

Malicious code in bioql PyPI...

EUVD-2024-44273

Malicious code in bioql PyPI...

EUVD-2024-31512

Malicious code in bioql PyPI...

EUVD-2024-31511

Malicious code in bioql PyPI...

EUVD-2022-48123

Malicious code in bioql PyPI...

CVE-2025-45997

CVE-2025-45997 affects Sourcecodester Web-based Pharmacy Product Management System v1.0. The issue is in the file upload feature: an attacker can upload a PHP file disguised as an image by tampering the Content-Type header to image/jpg, potentially enabling remote code execution on the server. Th...

CVE-2025-45997

Sourcecodester Web-based Pharmacy Product Management System v.1.0 has a file upload vulnerability. An attacker can upload a PHP file disguised as an image by modifying the Content-Type header to image/jpg...

CVE-2024-4521

A vulnerability classified as problematic has been found in Campcodes Complete Web-Based School Management System 1.0. Affected is an unknown function of the file /view/teachersalarydetails2.php. The manipulation of the argument index leads to cross site scripting. It is possible to launch the...

CVE-2024-4646

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /view/studentpaymentdetails.php. The manipulation of the argument index leads to cross site scripting. It is possible to launc...

CVE-2020-6962

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station CSCS Versions 1.X CARESCAPE Central Station CSCS Versions 2.X, B450 Version 2.X, B6...

Tecnick TCExam SQL注入漏洞

Tecnick TCExam is a web-based open source e-exam system from Tecnick UK. The system is mainly used for online exams and so on. A SQL injection vulnerability exists in Tecnick TCExam version 16.3.2, which stems from improper neutralization of special elements in SQL commands, and could lead to SQL...

Tecnick TCExam 跨站脚本漏洞

Tecnick TCExam is a Web-based open source e-exam system from the UK company Tecnick. The system is mainly used for online exams, etc. A cross-site scripting vulnerability exists in Tecnick TCExam version 16.3.2, which stems from vulnerability to multiple cross-site scripting attacks...

CVE-2024-33805

A SQL injection vulnerability in /model/getstudent.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker to execute arbitrary SQL commands via the id parameter...

Tecnick TCExam SQL注入漏洞

Tecnick TCExam is a Web-based open source e-exam system from Tecnick UK. The system is mainly used for online exams, etc. Element is a Matrix web collaboration client of Element open source. Tecnick TCExam suffers from a SQL injection vulnerability that stems from the improper neutralization of...

Sistem Penyewaan Baju atau Pakaian Berbasis Web 1.0 SQL Injection

============================================================================================================================================= | Title : Sistem Penyewaan Baju atau Pakaian Berbasis Web v1.0 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser...