CVE-2026-3793 | SourceCodester Sales and Inventory System 1.0 GET Parameter sales_invoice1.php sellid sql injection

Inserito da Angelo Barbosa | Mar 8, 2026 | CVE

A vulnerability marked as critical has been reported in SourceCodester Sales and Inventory System 1.0. This vulnerability affects unknown code of the file sales_invoice1.php of the component GET Parameter Handler. This manipulation of the argument sellid causes sql injection.

The identification of this vulnerability is CVE-2026-3793. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-3793 | SourceCodester Sales and Inventory System 1.0 GET Parameter sales_invoice1.php sellid sql injection

Post correlati

CVE-2024-2283 | boyiddha Automated-Mess-Management-System 1.0 /member/view.php date sql injection

CVE-2025-12563 | Blog2Social Plugin up to 8.6.0 on WordPress theuploadVideo unrestricted upload

CVE-2024-49682 | smp7 Simple Membership Plugin up to 4.5.3 on WordPress redirect

CVE-2025-0957 | yaycommerce SMTP for Amazon SES Plugin up to 1.7.1 on WordPress cross site scripting