CVE-2026-3766

Medium CVSS: 5.1

A security flaw has been discovered in SourceCodester Web-based Pharmacy Product Management System 1.0. This impacts an unknown function of the file edit-profile.php. Performing a manipulation of the argument fullname results in cross site scripting. The attack may be initiated remotely. The exploit has been released to the public and may be used for attacks.

Vendor

Senior-walter

Product

Web-based Pharmacy Product Management System

CWE

CWE-79

Yayın Tarihi

2026-03-08 20:15:49

Güncelleme

2026-03-09 16:28:42

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Web-based Pharmacy Product Management System MEDIUM Senior-walter 2026

Referanslar

https://gist.github.com/Denilxavier/6b21cb788f7f545179286f6c44989448 https://vuldb.com/?ctiid.349744 https://vuldb.com/?id.349744 https://vuldb.com/?submit.768251 https://www.sourcecodester.com/

Benzer Kayıtlar

High

CVE-2026-30573

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0. The vulnerability is loc…

High

CVE-2026-30576

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file…

High

CVE-2026-30574

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-sales.php file…

High

CVE-2026-30575

A Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file…

Low

CVE-2026-3401

A weakness has been identified in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unkno…

Medium

CVE-2025-14206

A vulnerability was determined in SourceCodester Online Student Clearance System 1.0. The affected element is an unknown…