CVE-2026-9447 | SourceCodester Simple POS and Inventory System 1.0 /user/search.php Name sql injection

Inserito da Angelo Barbosa | Mag 24, 2026 | CVE

A vulnerability classified as critical has been found in SourceCodester Simple POS and Inventory System 1.0. The impacted element is an unknown function of the file /user/search.php. Performing a manipulation of the argument Name results in sql injection.

This vulnerability is reported as CVE-2026-9447. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-9447 | SourceCodester Simple POS and Inventory System 1.0 /user/search.php Name sql injection

Post correlati

CVE-2021-47201 | Linux Kernel up to 5.4.161/5.10.81/5.15.4 iavf_free_queues denial of service

CVE-2025-65267 | ERPNext/Frappe SVG Avatar Image cross site scripting

CVE-2024-0242 | Qolsys IQ Panel 4/IQ4 Hub up to 4.4.1 Setting information disclosure (icsa-24-039-01)

CVE-2024-27988 | WEN Themes WEN Responsive Columns Plugin up to 1.3.2 on WordPress cross site scripting