PT-2026-22785 · Sourcecodester · Pharmacy Point Of Sale System
Shininadd
·
Published
2026-03-03
·
Updated
2026-03-04
·
CVE-2026-26887
CVSS v3.1
2.7
Low
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Sourcecodester Pharmacy Point of Sale System version 1.0
Description
The Sourcecodester Pharmacy Point of Sale System version 1.0 is susceptible to SQL Injection. This issue is present in the
/pharmacy/manage supplier.php file. The vulnerability allows for potential unauthorized access to the database. The vulnerable parameter is not specified.Recommendations
Apply any available updates or patches for the Sourcecodester Pharmacy Point of Sale System version 1.0. As a temporary workaround, restrict access to the
/pharmacy/manage supplier.php file until a patch is available.Exploit
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Pharmacy Point Of Sale System