PT-2026-22606 · Sourcecodester · Personnel Property Equipment System

Thirtypenny77

Publicado

2026-03-02

Atualizado

2026-03-07

CVE-2026-26703

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions sourcecodester Personnel Property Equipment System version 1.0

Description The software is susceptible to a SQL Injection issue. The vulnerability exists in the /ppes/admin/advance search.php file. The vulnerable parameter is not specified.

Recommendations Apply a fix to the /ppes/admin/advance search.php file to address the SQL Injection issue.

Exploit

Correção

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89

Identificadores relacionados

CVE-2026-26703

Produtos afetados

Personnel Property Equipment System

PT-2026-22606 · Sourcecodester · Personnel Property Equipment System

CVE-2026-26703

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 10