ГлавнаяУязвимости → CVE-2026-2116
7.3высокая

CVE-2026-2116

Описание

A vulnerability has been found in itsourcecode Society Management System 1.0. Impacted is an unknown function of the file /admin/edit_expenses.php. Such manipulation of the argument expenses_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Затрагиваемое ПО
Angeljudesuarez Society management system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/zpf7029/oblong/issues/1https://itsourcecode.com/https://vuldb.com/?ctiid.344691https://vuldb.com/?id.344691https://vuldb.com/?submit.746798