CVE-2026-4780 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability was detected in SourceCodester Sales and Inventory System 1.0. Impacted is an unknown function of the file update_out_standing.php of the compon…
Medium CVSS: 5.3

CVE-2026-4780

A vulnerability was detected in SourceCodester Sales and Inventory System 1.0. Impacted is an unknown function of the file update_out_standing.php of the component HTTP GET Parameter Handler. Performing a manipulation of the argument sid results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and may be used.
Vendor
-
Product
-
CWE
CWE-74
Yayın Tarihi
2026-03-25 00:16:41
Güncelleme
2026-03-25 15:41:58
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-74 MEDIUM 2026

Referanslar

https://github.com/meifukun/Web-Security-PoCs/blob/main/Inventory-System/SQLi-UpdateOutStanding-sid.md https://vuldb.com/?ctiid.352798 https://vuldb.com/?id.352798 https://vuldb.com/?submit.775173 https://www.sourcecodester.com/