janobe Point of Sales 1.0
Approved changes feed: RSS · Atom
cpe:2.3:a:janobe:point_of_sales:1.0:*:*:*:*:*:*:*
part: a version: 1.0 update: *
| Vendor | Janobe (958e97e2-37fb-58eb-baa2-792f3e424acf) |
|---|---|
| Product | Point Of Sales (1f045e41-1dd3-5de9-b757-2e0d4fa317bd) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-12294 |
vulnerable | 2026-06-03 14:58:44.098037 |
SourceCodester Point of Sales delete_category.php sql injection
MEDIUM (4.7)
A security flaw has been discovered in SourceCodester Point of Sales 1.0. Impacted is an unknown function of the file /delete_category.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been released to the public and may be exploited.
Published: 2025-10-27T16:02:10.885Z
Updated: 2025-10-27T20:31:41.606Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-12293 |
vulnerable | 2026-06-03 14:58:44.097359 |
SourceCodester Point of Sales category.php sql injection
HIGH (7.3)
A vulnerability was identified in SourceCodester Point of Sales 1.0. This issue affects some unknown processing of the file /category.php. Such manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used.
Published: 2025-10-27T16:02:07.688Z
Updated: 2025-10-27T20:31:16.208Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-12292 |
vulnerable | 2026-06-03 14:58:44.096755 |
SourceCodester Point of Sales index.php sql injection
HIGH (7.3)
A vulnerability was determined in SourceCodester Point of Sales 1.0. This vulnerability affects unknown code of the file /index.php. This manipulation of the argument Username causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.
Published: 2025-10-27T15:32:09.216Z
Updated: 2025-10-30T14:16:59.817Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.