PT-2026-30412 · Code Projects · Simple Laundry System

Weining Xiao

Publicado

2026-04-05

Atualizado

2026-04-05

CVE-2026-5540

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

A vulnerability has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /modifymember.php of the component Parameter Handler. Such manipulation of the argument firstName leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Exploit

Correção

SQL injection

Special Elements Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89CWE-74

Identificadores relacionados

CVE-2026-5540

Produtos afetados

Simple Laundry System

PT-2026-30412 · Code Projects · Simple Laundry System

CVE-2026-5540

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6