PT-2026-55754 · Sourcecodester · Multi-Vendor Online Groceries Management System

Chr1S

·

Publicado

2026-07-05

·

Atualizado

2026-07-05

·

CVE-2026-14691

CVSS v3.1

6.3

Média

VetorAV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
A security vulnerability has been detected in SourceCodester Multi-Vendor Online Grocery Management System 1.0. This impacts the function update settings info of the file classes/SystemSettings.php of the component Setting Handler. Such manipulation of the argument content[] leads to code injection. The attack can be executed remotely. The exploit has been disclosed publicly and may be used.

Exploit

Correção

Special Elements Injection

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

Enumeração de Fraquezas

Identificadores relacionados

CVE-2026-14691

Produtos afetados

Multi-Vendor Online Groceries Management System