CVE-2026-7612 | itsourcecode Courier Management System 1.0 /edit_user.php ID sql injection

Inserito da Angelo Barbosa | Mag 1, 2026 | CVE

A vulnerability described as critical has been identified in itsourcecode Courier Management System 1.0. Affected is an unknown function of the file /edit_user.php. Executing a manipulation of the argument ID can lead to sql injection.

This vulnerability appears as CVE-2026-7612. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-7612 | itsourcecode Courier Management System 1.0 /edit_user.php ID sql injection

Post correlati

CVE-2025-66423 | Tryton trytond up to 6.0.69/7.0.39/7.4.20/7.6.10 HTML Editor authorization (Issue 14364)

CVE-2024-9049 | Beaver Builder Plugin up to 2.8.3.6 on WordPress Button Group Module cross site scripting

CVE-2023-4024 | Radio Player Plugin up to 2.0.73 on WordPress authorization

CVE-2024-41228 | AliyunContainerService Pouch 1.3.1 symlink