CVE-2026-7109

CVSS v2.0

5.0

Medium

AV:N/AC:L/Au:N/C:P/I:N/A:N

A vulnerability was detected in code-projects Invoice System in Laravel 1.0. This impacts an unknown function of the file /item of the component API Endpoint. Performing a manipulation results in improper authorization. It is possible to initiate the attack remotely. The exploit is now public and may be used.

Exploit

Fix

Improper Authorization

Incorrect Privilege Assignment

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-285CWE-266

Related Identifiers

CVE-2026-7109

Affected Products

Invoice System In Laravel

CVE-2026-7109

Weakness Enumeration

Related Identifiers

Affected Products

References · 6