CVE-2026-2115

Medium CVSS: 6.9

A flaw has been found in itsourcecode Society Management System 1.0. This issue affects some unknown processing of the file /admin/delete_expenses.php. This manipulation of the argument expenses_id causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.

Vendor

Angeljudesuarez

Product

Society Management System

CWE

CWE-74

Yayın Tarihi

2026-02-07 23:15:48

Güncelleme

2026-02-10 13:23:11

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Society Management System MEDIUM Angeljudesuarez 2026

Referanslar

https://github.com/zpf7029/oblong/issues/2 https://itsourcecode.com/ https://vuldb.com/?ctiid.344690 https://vuldb.com/?id.344690 https://vuldb.com/?submit.746797

Benzer Kayıtlar

Medium

CVE-2026-4474

A flaw has been found in itsourcecode University Management System 1.0. Impacted is an unknown function of the file /adm…

Medium

CVE-2026-4223

A vulnerability was identified in itsourcecode Payroll Management System 1.0. This issue affects some unknown processing…

Medium

CVE-2026-3944

A vulnerability was determined in itsourcecode University Management System 1.0. This vulnerability affects unknown code…

Medium

CVE-2026-3812

A vulnerability was determined in itsourcecode Payroll Management System 1.0. Affected is an unknown function of the fil…

Medium

CVE-2026-3767

A weakness has been identified in itsourcecode sanitize or validate this input 1.0. Affected is an unknown function of t…

Medium

CVE-2026-3765

A vulnerability was identified in itsourcecode University Management System 1.0. This affects an unknown function of the…