CVE-2026-7087 in Pharmacy Sales and Inventory Systeminfo

Zusammenfassung

von MITRE • 27.04.2026

A security flaw has been discovered in SourceCodester Pharmacy Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=save_sales. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Veröffentlichung

27.04.2026

Moderieren

akzeptiert

Eintrag

VDB-359662

CPE

bereit

CWE

CWE-89 (bestätigt)

Exploit

Download

CVSS

7.3 (VulDB)

EPSS

0.00043

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7087
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7087
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7087/

◂ Zurück Übersicht Weiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!