CVE-2026-5034 in code-projects Accounting System
Summary
A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /edit_costumer.php of the component Parameter Handler. This manipulation of the argument cos_id causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.
Disclosure
03/29/2026
Entries
| Published | Base | Temp | Vulnerability | CWE | Prod | Exp | Cou | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 03/27/2026 | 7.3 | 6.6 | code-projects Accounting System Parameter edit_costumer.php sql injection | 89 | Accounting Software | Proof-of-Concept | Not defined | 0.00030 | 2.13 | CVE-2026-5034 |