CVE-2026-5034 in code-projects Accounting System
要約 (英語)
A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /edit_costumer.php of the component Parameter Handler. This manipulation of the argument cos_id causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.
公開
2026年03月29日
エントリ
| 公開済み | ベース | テンポ | 脆弱性 | CWE | 製品 | 悪用可 | 対策 | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 2026年03月27日 | 7.3 | 6.6 | code-projects Accounting System Parameter edit_costumer.php SQLインジェクション | 89 | Accounting Software | 概念実証 | 未定義 | 0.00030 | 2.16 | CVE-2026-5034 |