CVE-2026-5034 in code-projects Accounting System
摘要 (英语)
A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /edit_costumer.php of the component Parameter Handler. This manipulation of the argument cos_id causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.
披露
2026-03-29
条目
| 已发布 | 基础 | 临时 | 漏洞 | CWE | 产品 | 可利用 | 对策 | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 2026-03-27 | 7.3 | 6.6 | code-projects Accounting System Parameter edit_costumer.php SQL注入 | 89 | Accounting Software | 概念验证 | 未定义 | 0.00000 | 2.10 | CVE-2026-5034 |