Medicine Tracker System
CVEs (12)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-7226 | 0.00 | — | 0.00 | Jul 30, 2024 | A vulnerability was found in SourceCodester Medicine Tracker System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /classes/Users.php?f=save_user of the component Password Change Handler. The manipulation leads to cross-site request… | |||
| CVE-2024-6419 | 0.00 | — | 0.00 | Jun 30, 2024 | A vulnerability classified as critical was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file /classes/Master.php?f=save_medicine. The manipulation of the argument id leads to sql injection. The attack can be initiated… | |||
| CVE-2024-6418 | 0.00 | — | 0.00 | Jun 30, 2024 | A vulnerability classified as critical has been found in SourceCodester Medicine Tracker System 1.0. This affects an unknown part of the file /classes/Users.php?f=register_user. The manipulation of the argument username leads to sql injection. It is possible to initiate the… | |||
| CVE-2023-7134 | 0.00 | — | 0.00 | Dec 28, 2023 | A vulnerability was found in SourceCodester Medicine Tracking System 1.0. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument page leads to path traversal: '../filedir'. The attack may be initiated remotely. The exploit has… | |||
| CVE-2023-7123 | 0.00 | — | 0.00 | Dec 27, 2023 | A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracking System 1.0. This issue affects some unknown processing of the file /classes/Master.php? f=save_medicine. The manipulation of the argument id/name/description leads to sql… | |||
| CVE-2023-5581 | 0.00 | — | 0.00 | Oct 14, 2023 | A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument page leads to cross site scripting. The attack can be initiated remotely. The… | |||
| CVE-2023-30112 | 0.00 | — | 0.00 | Apr 26, 2023 | Medicine Tracker System in PHP 1.0.0 is vulnerable to SQL Injection. | |||
| CVE-2023-30106 | 0.00 | — | 0.00 | Apr 25, 2023 | Sourcecodester Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting (XSS) via page=about. | |||
| CVE-2023-30458 | 0.00 | — | 0.01 | Apr 24, 2023 | A username enumeration issue was discovered in Medicine Tracker System 1.0. The login functionality allows a malicious user to guess a valid username due to a different response time from invalid usernames. When one enters a valid username, the response time increases depending… | |||
| CVE-2023-1464 | 0.00 | — | 0.01 | Mar 17, 2023 | A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker System 1.0. This affects an unknown part of the file Users.php?f=save_user. The manipulation of the argument firstname/middlename/lastname/username/password leads to improper… | |||
| CVE-2023-1447 | 0.00 | — | 0.00 | Mar 17, 2023 | A vulnerability, which was classified as problematic, has been found in SourceCodester Medicine Tracker System 1.0. Affected by this issue is some unknown functionality of the file app/?page=medicines/manage_medicine. The manipulation of the argument name/description with the… | |||
| CVE-2023-1439 | 0.00 | — | 0.00 | Mar 17, 2023 | A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracker System 1.0. This issue affects some unknown processing of the file medicines/view_details.php of the component GET Parameter Handler. The manipulation of the argument GET leads… |
- CVE-2024-7226Jul 30, 2024risk 0.00cvss —epss 0.00
A vulnerability was found in SourceCodester Medicine Tracker System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /classes/Users.php?f=save_user of the component Password Change Handler. The manipulation leads to cross-site request…
- CVE-2024-6419Jun 30, 2024risk 0.00cvss —epss 0.00
A vulnerability classified as critical was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file /classes/Master.php?f=save_medicine. The manipulation of the argument id leads to sql injection. The attack can be initiated…
- CVE-2024-6418Jun 30, 2024risk 0.00cvss —epss 0.00
A vulnerability classified as critical has been found in SourceCodester Medicine Tracker System 1.0. This affects an unknown part of the file /classes/Users.php?f=register_user. The manipulation of the argument username leads to sql injection. It is possible to initiate the…
- CVE-2023-7134Dec 28, 2023risk 0.00cvss —epss 0.00
A vulnerability was found in SourceCodester Medicine Tracking System 1.0. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument page leads to path traversal: '../filedir'. The attack may be initiated remotely. The exploit has…
- CVE-2023-7123Dec 27, 2023risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracking System 1.0. This issue affects some unknown processing of the file /classes/Master.php? f=save_medicine. The manipulation of the argument id/name/description leads to sql…
- CVE-2023-5581Oct 14, 2023risk 0.00cvss —epss 0.00
A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument page leads to cross site scripting. The attack can be initiated remotely. The…
- CVE-2023-30112Apr 26, 2023risk 0.00cvss —epss 0.00
Medicine Tracker System in PHP 1.0.0 is vulnerable to SQL Injection.
- CVE-2023-30106Apr 25, 2023risk 0.00cvss —epss 0.00
Sourcecodester Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting (XSS) via page=about.
- CVE-2023-30458Apr 24, 2023risk 0.00cvss —epss 0.01
A username enumeration issue was discovered in Medicine Tracker System 1.0. The login functionality allows a malicious user to guess a valid username due to a different response time from invalid usernames. When one enters a valid username, the response time increases depending…
- CVE-2023-1464Mar 17, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker System 1.0. This affects an unknown part of the file Users.php?f=save_user. The manipulation of the argument firstname/middlename/lastname/username/password leads to improper…
- CVE-2023-1447Mar 17, 2023risk 0.00cvss —epss 0.00
A vulnerability, which was classified as problematic, has been found in SourceCodester Medicine Tracker System 1.0. Affected by this issue is some unknown functionality of the file app/?page=medicines/manage_medicine. The manipulation of the argument name/description with the…
- CVE-2023-1439Mar 17, 2023risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracker System 1.0. This issue affects some unknown processing of the file medicines/view_details.php of the component GET Parameter Handler. The manipulation of the argument GET leads…