Seniorwalter

Web-based Pharmacy Product Management System

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2025-56018

Exploit
  • EPSS 0.03%
  • Veröffentlicht 30.09.2025 16:15:52
  • Zuletzt bearbeitet 07.10.2025 13:32:38

SourceCodester Web-based Pharmacy Product Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in Category Management via the category name field.

8.1

CVE-2025-56274

Exploit
  • EPSS 0.04%
  • Veröffentlicht 15.09.2025 00:00:00
  • Zuletzt bearbeitet 18.09.2025 16:48:30

SourceCodester Web-based Pharmacy Product Management System 1.0 is vulnerable to Incorrect Access Control, which allows low-privileged users to forge high privileged (such as admin) sessions and perform sensitive operations such as adding new users.

9.8

CVE-2025-3783

Exploit
  • EPSS 0.32%
  • Veröffentlicht 18.04.2025 05:31:05
  • Zuletzt bearbeitet 23.04.2025 18:03:35

A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-product.php. The manipulation of the argument Avatar lead...