Loading market data...
← Back to CVE feed

CVE-2026-14692

MEDIUM CVSS 6.3 View on NVD ↗

Description

A vulnerability was detected in SourceCodester Multi-Vendor Online Grocery Management System 1.0/5.7.26. Affected is the function save_shop_type of the file classes/Master.php of the component POST Parameter Handler. Performing a manipulation results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Published: Jul 05, 2026 03:16 UTC Modified: Jul 05, 2026 03:16 UTC