PT-2026-22786 · Sourcecodester · Pharmacy Point Of Sale System

Liu Lanling

Publicado

2026-03-03

Atualizado

2026-03-04

CVE-2026-26888

CVSS v3.1

2.7

Baixa

Vetor

AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Sourcecodester Pharmacy Point of Sale System version 1.0

Description The Sourcecodester Pharmacy Point of Sale System version 1.0 is susceptible to SQL Injection. This issue affects the /pharmacy/manage stock.php endpoint. Successful exploitation could allow an attacker to manipulate database queries. The vulnerable parameter is not specified.

Recommendations Apply any available updates or patches to address the SQL Injection issue in the /pharmacy/manage stock.php endpoint. As a temporary workaround, consider restricting access to the /pharmacy/manage stock.php endpoint until a patch is available.

Exploit

Correção

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89

Identificadores relacionados

CVE-2026-26888

Produtos afetados

Pharmacy Point Of Sale System

PT-2026-22786 · Sourcecodester · Pharmacy Point Of Sale System

CVE-2026-26888

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5