Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
inventory system project inventory system vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-23014
Cross Site Scripting (XSS) vulnerability in InventorySystem thru commit e08fbbe17902146313501ed0b5feba81d58f455c (on Apr 23, 2021) via edit_store_name and edit_active inputs in file InventorySystem.php.
Inventory System Project Inventory System
9.8
CVSSv3
CVE-2023-4182
A vulnerability, which was classified as critical, was found in SourceCodester Inventory Management System 1.0. This affects an unknown part of the file edit_sell.php. The manipulation of the argument up_pid leads to sql injection. It is possible to initiate the attack remotely. ...
Inventory Management System Project Inventory Management System 1.0
9.8
CVSSv3
CVE-2023-4183
A vulnerability has been found in SourceCodester Inventory Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file edit_update.php of the component Password Handler. The manipulation of the argument user_id leads to improper access...
Inventory Management System Project Inventory Management System 1.0
9.8
CVSSv3
CVE-2023-4184
A vulnerability was found in SourceCodester Inventory Management System 1.0 and classified as critical. This issue affects some unknown processing of the file sell_return.php. The manipulation of the argument pid leads to sql injection. The attack may be initiated remotely. The a...
Inventory Management System Project Inventory Management System 1.0
4.8
CVSSv3
CVE-2023-24231
A stored cross-site scripting (XSS) vulnerability in the component /php-inventory-management-system/categories.php of Inventory Management System v1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Categories Name parameter.
Inventory Management System Project Inventory Management System 1.0
4.8
CVSSv3
CVE-2023-24232
A stored cross-site scripting (XSS) vulnerability in the component /php-inventory-management-system/product.php of Inventory Management System v1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Product Name parameter.
Inventory Management System Project Inventory Management System 1.0
4.8
CVSSv3
CVE-2023-24233
A stored cross-site scripting (XSS) vulnerability in the component /php-inventory-management-system/orders.php?o=add of Inventory Management System v1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Client Name parameter.
Inventory Management System Project Inventory Management System 1.0
4.8
CVSSv3
CVE-2023-24234
A stored cross-site scripting (XSS) vulnerability in the component php-inventory-management-system/brand.php of Inventory Management System v1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Brand Name parameter.
Inventory Management System Project Inventory Management System 1.0
9.8
CVSSv3
CVE-2018-18804
Bakeshop Inventory System 1.0 has SQL injection via the login screen, related to include/publicfunction.vb.
Bakeshop Inventory System Project Bakeshop Inventory System 1.0
1 EDB exploit
8.8
CVSSv3
CVE-2023-4449
A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /index.php?page=member. The manipulation of the argument columns[0][data] leads to sql injection. It i...
Inventory Management System Project Inventory Management System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »