CVE-2026-4778 in Sales and Inventory Systeminformação

Sumário

de MITRE • 25/03/2026

A weakness has been identified in SourceCodester Sales and Inventory System 1.0. This vulnerability affects unknown code of the file update_category.php of the component HTTP GET Parameter Handler. This manipulation of the argument sid causes sql injection. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

VulDB

Divulgação

25/03/2026

Moderação

aceite

Entrada

VDB-352796

CPE

pronto

CWE

CWE-89 (confirmado)

Exploração

Descarregar

CVSS

6.3 (CNA)

EPSS

0.00012

KEV

não

Atividades

muito baixo

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-4778
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-4778
CVE Details	https://www.cvedetails.com/cve/CVE-2026-4778/

◂ Voltar Visão Geral Próximo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!