Sourcecodester Pharmacy Sales Inventory System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Sourcecodester Pharmacy Sales Inventory System.
By the Year
In 2026 there have been 6 vulnerabilities in Sourcecodester Pharmacy Sales Inventory System with an average score of 4.0 out of ten.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 6 | 4.00 |
It may take a day or so for new Pharmacy Sales Inventory System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Sourcecodester Pharmacy Sales Inventory System Security Vulnerabilities
SourceCodester Pharmacy Sales & Inventory 1.0 ImpAccCtrl via sell_statement
CVE-2026-10255
5.3 - Medium
- June 01, 2026
A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is the function sell_statement of the file application/controllers/ShowForm.php. Such manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Authorization
CSV injection in SourceCodester Sales & Inventory Sys 1.0 Supplier Creation
CVE-2026-10248
4.7 - Medium
- June 01, 2026
A vulnerability was determined in SourceCodester Pharmacy Sales and Inventory System up to 1.0. This issue affects the function create_supplier of the file /Export_csv/export of the component Supplier Creation Interface. This manipulation of the argument Address/Company Name causes csv injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.
CSV Injection
SourceCodester Pharmacy Sales & Inventory System 1.0 XSS via create_generic_name
CVE-2026-10247
3.5 - Low
- June 01, 2026
A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This vulnerability affects the function create_generic_name of the file /ShowForm/create_generic_name/main. The manipulation of the argument generic_name results in cross site scripting. The attack may be launched remotely. The exploit has been made public and could be used.
XSS
SourceCodester Pharmacy Sales & Inventory 1.0: XSS in create_medicine
CVE-2026-10246
3.5 - Low
- June 01, 2026
A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects the function create_medicine_presentation of the file /ShowForm/create_medicine_presentation/main. The manipulation of the argument medicine_presentation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
XSS
SourceCodester Pharmacy Sales & Inventory 1.0 XSS in create_supplier
CVE-2026-10245
3.5 - Low
- June 01, 2026
A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this issue is the function create_supplier of the file /ShowForm/create_supplier/main. Executing a manipulation of the argument company_name can lead to cross site scripting. The attack can be launched remotely. The exploit has been published and may be used.
XSS
XSS in SourceCodester Pharmacy Sales & Inv. Sys 1.0 create_medicine_name
CVE-2026-10244
3.5 - Low
- June 01, 2026
A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is the function create_medicine_name of the file /ShowForm/create_medicine_name/main. Performing a manipulation of the argument medicine_name results in cross site scripting. The attack can be initiated remotely. The exploit is now public and may be used.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Sourcecodester Pharmacy Sales Inventory System or by Sourcecodester? Click the Watch button to subscribe.
