CVE-2026-7391 | SourceCodester Pharmacy Sales and Inventory System 1.0 ajax.php?action=save_supplier ID sql injection

Inserito da Angelo Barbosa | Apr 29, 2026 | CVE

A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. It has been rated as critical. This affects the function save_supplier of the file /ajax.php?action=save_supplier. This manipulation of the argument ID causes sql injection.

This vulnerability is registered as CVE-2026-7391. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-7391 | SourceCodester Pharmacy Sales and Inventory System 1.0 ajax.php?action=save_supplier ID sql injection

Post correlati

CVE-2023-6043 | Lenovo Vantage prior 4.0.49.0 certificate validation

CVE-2021-47737 | CSZ CMS 1.2.7 cross site scripting (Exploit 48357 / EDB-48357)

CVE-2025-10539 | DeskTime Time Tracking App up to 1.3.673 certificate validation

CVE-2024-50411 | Kevon Adonis WP Abstracts Plugin up to 2.7.1 on WordPress cross site scripting