CVE-2026-7091 | code-projects Invoice System in Laravel 1.0 User Management /user improper authorization

Inserito da Angelo Barbosa | Apr 26, 2026 | CVE

A vulnerability was found in code-projects Invoice System in Laravel 1.0. It has been classified as critical. This impacts an unknown function of the file /user of the component User Management Handler. This manipulation causes improper authorization.

This vulnerability is registered as CVE-2026-7091. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-7091 | code-projects Invoice System in Laravel 1.0 User Management /user improper authorization

Post correlati

CVE-2024-0317 | FireEye EX 9.0.3.936727 type/s_f_name cross site scripting

CVE-2025-52815 | AncoraThemes CityGov Plugin up to 1.9 on WordPress filename control

CVE-2025-10607 | Portabilis i-Educar up to 2.10 diarioApi information disclosure

CVE-2020-36988 | GuidoNeele PDW File Browser up to 1.3 rename/path cross site scripting (Exploit 48947 / EDB-48947)