Sourcecodester Inventory System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Sourcecodester Inventory System.
By the Year
In 2026 there have been 3 vulnerabilities in Sourcecodester Inventory System with an average score of 4.7 out of ten.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 3 | 4.70 |
It may take a day or so for new Inventory System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Sourcecodester Inventory System Security Vulnerabilities
SourceCodester Inventory Sys 1.0 XSS via header.php - Remote
CVE-2026-11520
3.5 - Low
- June 08, 2026
A weakness has been identified in SourceCodester Inventory System 1.0. Affected by this issue is some unknown functionality of the file header.php. This manipulation causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be used for attacks. Multiple parameters might be affected.
XSS
Remote Auth Bypass in SourceCodester Inventory System 1.0: Creation Handler
CVE-2026-11519
6.3 - Medium
- June 08, 2026
A security flaw has been discovered in SourceCodester Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /Product_Inventory/api/users_handler.php of the component Account Creation Handler. The manipulation of the argument ROLE results in improper authorization. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks.
AuthZ
SourceCodester Inventory System 1.0 XSS via /users.php fullname/username
CVE-2026-11518
4.3 - Medium
- June 08, 2026
A vulnerability was identified in SourceCodester Inventory System 1.0. Affected is an unknown function of the file /users.php of the component User Management Page. The manipulation of the argument fullname/username leads to cross site scripting. The attack is possible to be carried out remotely. The exploit is publicly available and might be used.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Sourcecodester Inventory System or by Sourcecodester? Click the Watch button to subscribe.
