CVE-2026-7199 in Pharmacy Sales and Inventory Systeminfo

Zusammenfassung

von MITRE • 28.04.2026

A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=delete_product. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Veröffentlichung

28.04.2026

Moderieren

akzeptiert

Eintrag

VDB-359800

CPE

bereit

CWE

CWE-89 (bestätigt)

Exploit

Download

CVSS

7.3 (VulDB)

EPSS

0.00043

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7199
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7199
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7199/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!