CVE-2026-7127 in Pharmacy Sales and Inventory Systeminfo

Zusammenfassung

von MITRE • 27.04.2026

A weakness has been identified in SourceCodester Pharmacy Sales and Inventory System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=delete_receiving. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Veröffentlichung

27.04.2026

Moderieren

akzeptiert

Eintrag

VDB-359726

CPE

bereit

CWE

CWE-89 (bestätigt)

Exploit

Download

CVSS

7.3 (VulDB)

EPSS

0.00043

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7127
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7127
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7127/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!