CVE-2026-4908 | code-projects Simple Laundry System 1.0 Parameter /modstaffinfo.php userid sql injection

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability was found in code-projects Simple Laundry System 1.0 and classified as critical. This affects an unknown function of the file /modstaffinfo.php of the component Parameter Handler. The manipulation of the argument userid results in sql injection.

This vulnerability was named CVE-2026-4908. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-4908 | code-projects Simple Laundry System 1.0 Parameter /modstaffinfo.php userid sql injection

Post correlati

CVE-2025-15536 | BYVoid OpenCC up to 1.1.9 MaxMatchSegmentation.cpp MaxMatchSegmentation heap-based overflow (Issue 997)

CVE-2024-35301 | JetBrains TeamCity prior 2024.03.1 GitHub App Token Scope insufficient permissions or privileges

CVE-2025-36931 | Google Android gxp_buffer.h gxp_buffer out-of-bounds write

CVE-2025-11949 | Digiwin EasyFlow .NET/EasyFlow AiNet up to 6.6.19 missing authentication