Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
6.3 MEDIUM
CVE-2026-25599 — Missing authentication and clear‑text data transmission affecting Orca heat pumps

Missing authentication and clear‑text transmission of data from the heat pumps to the control server, combined with the absence of input validation on aggregated data, can lead to stored XSS that ena…

Remote | Authentication
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
7.5 HIGH
CVE-2026-10250 — itsourcecode Online Blood Bank Management System campsdetails.php sql injection

A security flaw has been discovered in itsourcecode Online Blood Bank Management System 1.0. The affected element is an unknown function of the file /admin/campsdetails.php. Performing a manipulation…

Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
7.5 HIGH
CVE-2026-10249 — itsourcecode Online Blood Bank Management System viewrequest.php sql injection

A vulnerability was identified in itsourcecode Online Blood Bank Management System 1.0. Impacted is an unknown function of the file /admin/viewrequest.php. Such manipulation of the argument ID leads …

Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
5.8 MEDIUM
CVE-2026-10248 — SourceCodester Pharmacy Sales and Inventory System Supplier Creation export create_suppli…

A vulnerability was determined in SourceCodester Pharmacy Sales and Inventory System up to 1.0. This issue affects the function create_supplier of the file /Export_csv/export of the component Supplie…

Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
4.0 MEDIUM
CVE-2026-10247 — SourceCodester Pharmacy Sales and Inventory System main create_generic_name cross site sc…

A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This vulnerability affects the function create_generic_name of the file /ShowForm/create_generic_name/main. The ma…

pharmacy_sales_and_inventory_system | Remote | Cross-Site Scripting
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
4.0 MEDIUM
CVE-2026-10246 — SourceCodester Pharmacy Sales and Inventory System main create_medicine_presentation cros…

A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects the function create_medicine_presentation of the file /ShowForm/create_medicine_presentation/mai…

pharmacy_sales_and_inventory_system | Remote | Cross-Site Scripting
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
4.0 MEDIUM
CVE-2026-10245 — SourceCodester Pharmacy Sales and Inventory System main create_supplier cross site script…

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this issue is the function create_supplier of the file /ShowForm/create_supplier/main. Executing a manipul…

pharmacy_sales_and_inventory_system | Remote | Cross-Site Scripting
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
4.0 MEDIUM
CVE-2026-10244 — SourceCodester Pharmacy Sales and Inventory System main create_medicine_name cross site s…

A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is the function create_medicine_name of the file /ShowForm/create_medicine_name/…

pharmacy_sales_and_inventory_system | Remote | Cross-Site Scripting
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
Showing 20 of 7948 Results