Sales and inventory system
This hub aggregates every CVE we track for Sales and inventory system, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.
72
CVEs tracked
2
Critical
36
High
0
In CISA KEV
Severity distribution
HIGH36MEDIUM33CRITICAL2LOW1
Monthly trend
0
0
0
0
0
0
0
0
0
0
24
5
8
0
2
0
0
0
0
0
31
1
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Sales and inventory system.
- CVE-2026-5810SourceCodester Sales and Inventory System GET Parameter delete.php cross site scripting3.5
- CVE-2026-30565A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_supplier.php file via the "limit" parameter. T...6.1
- CVE-2026-30563A Stored Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the update_details.php file. The application fails to sani...6.1
- CVE-2026-30558A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_customer.php file via the "msg" parameter. The ...6.1
- CVE-2026-30560A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_supplier.php file via the "msg" parameter. The ...6.1
- CVE-2026-30561A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_purchase.php file via the "msg" parameter. The ...6.1
- CVE-2026-30556A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the index.php file via the "msg" parameter. The applica...6.1
- CVE-2026-30557A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_category.php file via the "msg" parameter. The ...6.1
- CVE-2026-30562A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_stock.php file via the "msg" parameter. The app...9.3
- CVE-2026-30564A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_payments.php file via the "limit" parameter. T...6.1
- CVE-2026-30566A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_customers.php file via the "limit" parameter. ...6.1
- CVE-2026-30559A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_sales.php file via the "msg" parameter. The app...6.1
- CVE-2026-4826SourceCodester Sales and Inventory System HTTP GET Parameter update_stock.php sql injection6.3
- CVE-2026-4825SourceCodester Sales and Inventory System HTTP GET Parameter update_sales.php sql injection6.3
- CVE-2026-4781SourceCodester Sales and Inventory System HTTP GET Parameter update_purchase.php sql injection6.3
Product normalization is registry-driven with AI assist and human review. How it works