CVE-2026-7549 | SourceCodester Pharmacy Sales and Inventory System 1.0 ajax.php?action=delete_customer ID sql injection

Inserito da Angelo Barbosa | Apr 30, 2026 | CVE

A vulnerability described as critical has been identified in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=delete_customer. Executing a manipulation of the argument ID can lead to sql injection.

This vulnerability appears as CVE-2026-7549. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-7549 | SourceCodester Pharmacy Sales and Inventory System 1.0 ajax.php?action=delete_customer ID sql injection

Post correlati

CVE-2024-31556 | Reportico Web up to 8.0.x Session ID Local Privilege Escalation

CVE-2025-7834 | PHPGurukul Complaint Management System 2.0 cross-site request forgery

CVE-2023-33676 | SourceCodester Lost and Found Information System 1.0 ?page=items/view id sql injection

CVE-2025-55043 | MuraCMS up to 10.1.10 csettings.cfc cross-site request forgery