CVE-2026-26891

Name of the Vulnerable Software and Affected Versions Sourcecodester Logistic Hub Parcel's Management System version 1.0

Description The software is susceptible to SQL Injection. The issue is present in the /manage parcel type.php file. The manage parcel type.php script does not properly sanitize user-supplied input, allowing attackers to inject malicious SQL code. This could potentially allow an attacker to access, modify, or delete data from the database.

Recommendations Apply appropriate input validation and sanitization techniques to all user-supplied data used in SQL queries within the /manage parcel type.php file.