Pharmacy Management System

pharmacy_management_system

Vendor: Pharmacy Management System Project • 13 CVEs

CVEs (13)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-8147 1Pharmacy Management System Project 1Pharmacy Management System Sep 11, 2024 Aug 25, 2024 5.3 MEDIUM· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php?action=editPharmacist. The manipulation of the argum...Show more A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php?action=editPharmacist. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2024-8146 1Pharmacy Management System Project 1Pharmacy Management System Sep 24, 2024 Aug 25, 2024 5.3 MEDIUM· v4 9.8 CRITICAL· v3 6.5 MEDIUM· v2 A vulnerability has been found in code-projects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php?action=editSalesman. The manipulation of the argum...Show more A vulnerability has been found in code-projects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php?action=editSalesman. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2024-8138 1Pharmacy Management System Project 1Pharmacy Management System Aug 27, 2024 Aug 25, 2024 5.3 MEDIUM· v4 9.8 CRITICAL· v3 6.5 MEDIUM· v2 A vulnerability, which was classified as critical, was found in code-projects Pharmacy Management System 1.0. Affected is the function editManager of the file /index.php?action=editManager of the component Parameter Hand...Show more A vulnerability, which was classified as critical, was found in code-projects Pharmacy Management System 1.0. Affected is the function editManager of the file /index.php?action=editManager of the component Parameter Handler. The manipulation of the argument id as part of String leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.Show less
CVE-2023-4186 1Pharmacy Management System Project 1Pharmacy Management System Nov 21, 2024 Aug 6, 2023 N/A· v4 9.8 CRITICAL· v3 6.5 MEDIUM· v2 A vulnerability was found in SourceCodester Pharmacy Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file manage_website.php. The manipulation le...Show more A vulnerability was found in SourceCodester Pharmacy Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file manage_website.php. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-236221 was assigned to this vulnerability.Show less
CVE-2023-31519 1Pharmacy Management System Project 1Pharmacy Management System Jan 23, 2025 May 16, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the email parameter at login_core.php.
CVE-2023-0918 1Pharmacy Management System Project 1Pharmacy Management System Nov 21, 2024 Feb 19, 2023 N/A· v4 9.8 CRITICAL· v3 6.5 MEDIUM· v2 A vulnerability has been found in codeprojects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file add.php of the component Avatar Image Handler. The manipulatio...Show more A vulnerability has been found in codeprojects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file add.php of the component Avatar Image Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-221494 is the identifier assigned to this vulnerability.Show less
CVE-2022-34950 1Pharmacy Management System Project 1Pharmacy Management System Nov 21, 2024 Aug 2, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editproduct.php.
CVE-2022-34949 1Pharmacy Management System Project 1Pharmacy Management System Nov 21, 2024 Aug 2, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Pharmacy Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities via the email or password parameter at login.php.
CVE-2022-34948 1Pharmacy Management System Project 1Pharmacy Management System Nov 21, 2024 Aug 2, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editbrand.php.
CVE-2022-34947 1Pharmacy Management System Project 1Pharmacy Management System Nov 21, 2024 Aug 2, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editcategory.php.
CVE-2022-34946 1Pharmacy Management System Project 1Pharmacy Management System Nov 21, 2024 Aug 2, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the startDate parameter at getexpproduct.php.
CVE-2022-34945 1Pharmacy Management System Project 1Pharmacy Management System Nov 21, 2024 Aug 2, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the startDate parameter at getproductreport.php.
CVE-2022-30887 1Pharmacy Management System Project 1Pharmacy Management System Nov 21, 2024 May 20, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Pharmacy Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the component /php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via...Show more Pharmacy Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the component /php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted image file.Show less