CVE-2026-5330

CVSS v2.0

6.4

Medium

AV:N/AC:L/Au:N/C:N/I:P/A:P

A vulnerability was found in SourceCodester/mayuri k Best Courier Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=delete user of the component User Delete Handler. Performing a manipulation of the argument ID results in improper access controls. The attack may be initiated remotely. The exploit has been made public and could be used.

Exploit

Fix

Improper Access Control

Incorrect Privilege Assignment

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-266

Related Identifiers

CVE-2026-5330

Affected Products

Best Courier Management System

CVE-2026-5330

Weakness Enumeration

Related Identifiers

Affected Products

References · 5