Sourcecodester Free And Open Source Inventory Management System vulnerabilities
6 known vulnerabilities affecting sourcecodester/free_and_open_source_inventory_management_system.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH2
Vulnerabilities
Page 1 of 1
CVE-2024-1926CRITICALCVSS 9.8v1.02024-02-27
CVE-2024-1926 [CRITICAL] CWE-89 CVE-2024-1926: A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It
A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /app/ajax/search_sales_report.php. The manipulation of the argument customer leads to sql injection. The attack may be initiated remotely. The exploit has been disclose
cvelistv5nvd
CVE-2023-7157CRITICALCVSS 9.8v1.02023-12-29
CVE-2023-7157 [CRITICAL] CWE-89 CVE-2023-7157: A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0 and
A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /app/ajax/sell_return_data.php. The manipulation of the argument columns[0][data] leads to sql injection. The attack may be initiated remotely. The exploit has been disclos
cvelistv5nvd
CVE-2023-7155HIGHCVSS 8.8v1.02023-12-29
CVE-2023-7155 [HIGH] CWE-89 CVE-2023-7155: A vulnerability, which was classified as critical, was found in SourceCodester Free and Open Source
A vulnerability, which was classified as critical, was found in SourceCodester Free and Open Source Inventory Management System 1.0. This affects an unknown part of the file /ample/app/action/edit_product.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the p
cvelistv5nvd
CVE-2023-6305CRITICALCVSS 9.8v1.02023-11-27
CVE-2023-6305 [CRITICAL] CWE-89 CVE-2023-6305: A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It
A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file ample/app/ajax/suppliar_data.php. The manipulation of the argument columns leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed
cvelistv5nvd
CVE-2023-6306CRITICALCVSS 9.8v1.02023-11-27
CVE-2023-6306 [CRITICAL] CWE-89 CVE-2023-6306: A vulnerability classified as critical has been found in SourceCodester Free and Open Source Invento
A vulnerability classified as critical has been found in SourceCodester Free and Open Source Inventory Management System 1.0. Affected is an unknown function of the file /ample/app/ajax/member_data.php. The manipulation of the argument columns leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the
cvelistv5nvd
CVE-2023-4449HIGHCVSS 8.8v1.02023-08-21
CVE-2023-4449 [HIGH] CWE-89 CVE-2023-4449: A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It
A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /index.php?page=member. The manipulation of the argument columns[0][data] leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to
cvelistv5nvd