VYPR

Pharmacy Management System

by Code Projects

CVEs (21)

  • CVE-2022-30887CriMay 20, 2022
    risk 0.66cvss 9.8epss 0.25

    Pharmacy Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the component /php_action/editProductImage.php. This vulnerability allows attackers to execute arbitrary code via a crafted image file.

  • CVE-2024-10196MedOct 21, 2024
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /add_new_invoice.php. The manipulation of the argument text leads to sql injection. The attack may be initiated remotely.…

  • CVE-2024-10140MedOct 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. Affected by this issue is some unknown functionality of the file /manage_supplier.php. The manipulation of the argument id leads to sql injection. The attack may be…

  • CVE-2024-10139MedOct 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add_new_supplier.php. The manipulation of the argument name leads to sql injection. The attack can be…

  • CVE-2024-10138MedOct 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. Affected is an unknown function of the file /add_new_purchase.php?action=is_supplier. The manipulation of the argument name leads to sql injection. It is possible to launch the…

  • CVE-2024-10137MedOct 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /manage_medicine.php?action=delete. The manipulation of the argument id leads to sql injection. The attack may be…

  • CVE-2024-10136MedOct 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /manage_invoice.php. The manipulation of the argument invoice_number leads to sql injection. The attack can be…

  • CVE-2024-10024MedOct 16, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. This issue affects some unknown processing of the file /php/manage_medicine_stock.php. The manipulation of the argument name/packing/generic_name/suppliers_name…

  • CVE-2024-10023MedOct 16, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0. This vulnerability affects unknown code of the file /php/add_new_medicine.php. The manipulation of the argument name/packing/generic_name/suppliers_name leads to sql injection. The…

  • CVE-2024-10022MedOct 16, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/manage_supplier.php?action=search. The manipulation of the argument text leads to sql injection. It is possible to initiate the…

  • CVE-2024-10021MedOct 16, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /php/manage_purchase.php?action=search&tag=VOUCHER_NUMBER. The manipulation of the argument text leads to…

  • CVE-2024-9976MedOct 15, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/manage_customer.php?action=search. The manipulation of the argument text leads to sql injection. It is possible to initiate the…

  • CVE-2024-8147MedAug 25, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php?action=editPharmacist. The manipulation of the argument id leads to sql injection. The attack may be initiated…

  • CVE-2024-8146MedAug 25, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability has been found in code-projects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php?action=editSalesman. The manipulation of the argument id leads to sql injection. The attack can be initiated…

  • CVE-2024-8138MedAug 25, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, was found in code-projects Pharmacy Management System 1.0. Affected is the function editManager of the file /index.php?action=editManager of the component Parameter Handler. The manipulation of the argument id as part of String…

  • CVE-2023-0918MedFeb 19, 2023
    risk 0.41cvss 6.3epss 0.01

    A vulnerability has been found in codeprojects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file add.php of the component Avatar Image Handler. The manipulation leads to unrestricted upload. The attack can be initiated…

  • CVE-2025-4888MedMay 18, 2025
    risk 0.34cvss 5.3epss 0.00

    A vulnerability, which was classified as critical, was found in code-projects Pharmacy Management System 1.0. This affects the function medicineType::take_order of the component Add Order Details. The manipulation leads to buffer overflow. An attack has to be approached locally.…

  • CVE-2024-8366MedAug 31, 2024
    risk 0.28cvss 4.3epss 0.01

    A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php?id=userProfileEdit of the component Update My Profile Page. The manipulation of the argument fname/lname/email…

  • CVE-2024-10199LowOct 21, 2024
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /manage_medicine.php of the component Manage Medicines Page. The manipulation of the argument…

  • CVE-2024-10198LowOct 21, 2024
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /manage_customer.php of the component Manage Customer Page. The manipulation of the argument…

Page 1 of 2