CVE-2026-7109 | code-projects Invoice System in Laravel 1.0 API Endpoint /item improper authorization

Inserito da Angelo Barbosa | Apr 26, 2026 | CVE

A vulnerability was found in code-projects Invoice System in Laravel 1.0. It has been rated as critical. This impacts an unknown function of the file /item of the component API Endpoint. Performing a manipulation results in improper authorization.

This vulnerability is cataloged as CVE-2026-7109. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-7109 | code-projects Invoice System in Laravel 1.0 API Endpoint /item improper authorization

Post correlati

CVE-2023-50933 | IBM PowerSC 1.3/2.0/2.1 cross site scripting (XFDB-275113)

CVE-2023-48617 | Adobe Experience Manager AEM Cloud Service/6.5.18.0 cross site scripting (APSB23-72)

CVE-2026-21791 | HCL Sametime 12.0.21 on Android Application Log log file (KB0129451)

CVE-2024-20292 | Cisco Duo up to 2.0.0 on Windows Authentication information disclosure (cisco-sa-duo-infodisc-rLCEqm6T)