PT-2026-22786 · Sourcecodester · Pharmacy Point Of Sale System
Liu Lanling
·
Published
2026-03-03
·
Updated
2026-03-04
·
CVE-2026-26888
CVSS v3.1
2.7
Low
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Sourcecodester Pharmacy Point of Sale System version 1.0
Description
The Sourcecodester Pharmacy Point of Sale System version 1.0 is susceptible to SQL Injection. This issue affects the
/pharmacy/manage stock.php endpoint. Successful exploitation could allow an attacker to manipulate database queries. The vulnerable parameter is not specified.Recommendations
Apply any available updates or patches to address the SQL Injection issue in the
/pharmacy/manage stock.php endpoint. As a temporary workaround, consider restricting access to the /pharmacy/manage stock.php endpoint until a patch is available.Exploit
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Pharmacy Point Of Sale System