PT-2026-24935 · Sourcecodester · Web-Based Pharmacy Product Management System

Muhdfarhan

Publicado

2026-03-12

Atualizado

2026-03-13

CVE-2026-4013

CVSS v2.0

6.5

Média

Vetor

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions SourceCodester Web-based Pharmacy Product Management System version 1.0

Description A flaw exists in SourceCodester Web-based Pharmacy Product Management System 1.0 that results in improper authorization. This issue affects an unknown function within the add admin.php file and can be exploited remotely. The manipulation of this function leads to unauthorized access.

Recommendations Versions prior to 1.0 are recommended. As a temporary workaround, consider restricting access to the add admin.php file to minimize the risk of exploitation.

Correção

Improper Authorization

Incorrect Privilege Assignment

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-285CWE-266

Identificadores relacionados

CVE-2026-4013

Produtos afetados

Web-Based Pharmacy Product Management System

PT-2026-24935 · Sourcecodester · Web-Based Pharmacy Product Management System

CVE-2026-4013

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8