CVE-2026-5034 in code-projects Accounting System
Résumé (Anglaise)
A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /edit_costumer.php of the component Parameter Handler. This manipulation of the argument cos_id causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.
Divulgation
29/03/2026
Entrées
| Publié | Base | Temp | Vulnérabilité | CWE | Prod | Exp | Con | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 27/03/2026 | 7.3 | 6.6 | code-projects Accounting System Parameter edit_costumer.php injection SQL | 89 | Accounting Software | Preuve de concept | Non défini | 0.00000 | 2.10 | CVE-2026-5034 |