Senior-walter

Web-based Pharmacy Product Management System

20 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.6

CVE-2026-3401

Exploit
  • EPSS 0.03%
  • Veröffentlicht 02.03.2026 00:02:10
  • Zuletzt bearbeitet 03.03.2026 19:47:49

A weakness has been identified in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown part. This manipulation causes session expiration. Remote exploitation of the attack is possible. The complexity of an attack i...

6.1

CVE-2025-65215

Exploit
  • EPSS 0.05%
  • Veröffentlicht 02.12.2025 00:00:00
  • Zuletzt bearbeitet 05.12.2025 18:59:04

Sourcecodester Web-based Pharmacy Product Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /product_expiry/add-supplier.php via the Supplier Name field.

8.8

CVE-2025-63712

Exploit
  • EPSS 0.03%
  • Veröffentlicht 10.11.2025 00:00:00
  • Zuletzt bearbeitet 18.11.2025 17:16:12

Cross-Site Request Forgery (CSRF) in SourceCodester Product Expiry Management System. The User Management module (delete-user.php) allows remote attackers to delete arbitrary user accounts via forged cross-origin GET requests because the endpoint rel...

8.6

CVE-2025-45997

Exploit
  • EPSS 0.23%
  • Veröffentlicht 28.05.2025 00:00:00
  • Zuletzt bearbeitet 09.06.2025 18:53:36

Sourcecodester Web-based Pharmacy Product Management System v.1.0 has a file upload vulnerability. An attacker can upload a PHP file disguised as an image by modifying the Content-Type header to image/jpg.

4.8

CVE-2025-4547

Exploit
  • EPSS 0.07%
  • Veröffentlicht 11.05.2025 21:00:07
  • Zuletzt bearbeitet 16.05.2025 17:19:47

A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Add User Page. The manipulation leads to cross site ...

6.1

CVE-2025-45751

Exploit
  • EPSS 0.18%
  • Veröffentlicht 05.05.2025 00:00:00
  • Zuletzt bearbeitet 07.05.2025 19:16:08

SourceCodester Web Based Pharmacy Product Management System 1.0 is vulnerable to Cross Site Scripting (XSS) in add-admin.php via the Fullname text field.

4.1

CVE-2025-3826

Exploit
  • EPSS 0.15%
  • Veröffentlicht 20.04.2025 13:00:12
  • Zuletzt bearbeitet 30.04.2025 17:16:40

A vulnerability, which was classified as problematic, was found in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown part of the file add-supplier.php. The manipulation of the argument txtsupplier_name/txtaddres...

4.1

CVE-2025-3825

Exploit
  • EPSS 0.15%
  • Veröffentlicht 20.04.2025 11:31:05
  • Zuletzt bearbeitet 30.04.2025 17:33:52

A vulnerability, which was classified as problematic, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected by this issue is some unknown functionality of the file add-category.php. The manipulation of the argume...

4.1

CVE-2025-3824

Exploit
  • EPSS 0.15%
  • Veröffentlicht 20.04.2025 11:15:44
  • Zuletzt bearbeitet 30.04.2025 17:36:04

A vulnerability classified as problematic was found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected by this vulnerability is an unknown functionality of the file add-product.php. The manipulation of the argument txtprice/...

4.1

CVE-2025-3823

Exploit
  • EPSS 0.26%
  • Veröffentlicht 20.04.2025 10:31:05
  • Zuletzt bearbeitet 30.04.2025 17:38:51

A vulnerability classified as problematic has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected is an unknown function of the file add-stock.php. The manipulation of the argument txttotalcost/txtproductID/txtpric...