MeldSecurity
Press Enter to search
CVE Database & Search →
Sign In Get Started

CVE-2026-0579

🔴 HIGH

A vulnerability was found in code-projects Online Product Reservation System 1.0. This affects an unknown part of the file /handgunner-administrator/edit.php of the component POST Parameter Handler. T...

Published
Jan 04, 2026
Last Modified
Jan 09, 2026
Views
3
Bookmarks
0

Description

Request Expert Review

A vulnerability was found in code-projects Online Product Reservation System 1.0. This affects an unknown part of the file /handgunner-administrator/edit.php of the component POST Parameter Handler. The manipulation of the argument prod_id/name/price/model/serial results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used.

Affected Products (1)

fabian - online_product_reservation_system

Version: 1.0

CVSS Scores

CVSS 3.1 7.3
7.3
HIGH
CVSS 2.0 7.3

References

code-projects.org github.com github.com vuldb.com vuldb.com vuldb.com

Additional Information

Source
cna@vuldb.com
State
Analyzed

Related CVEs

CVE-2025-66177

HIGH

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR/DVR/CVR/IPC models. If exploited, an attacker on t...

Score: 8.8

CVE-2025-66176

HIGH

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on...

Score: 8.8

CVE-2026-0514

MEDIUM

Due to a Cross-Site Scripting (XSS) vulnerability in SAP Business Connector, an unauthenticated attacker could craft a malicious link. When an unsuspe...

Score: 6.1

CVE-2026-0513

MEDIUM

Due to an Open Redirect Vulnerability in SAP Supplier Relationship Management (SICF Handler in SRM Catalog), an unauthenticated attacker could craft a...

Score: 4.7

CVE-2026-0511

HIGH

SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks for an authenticated user, resulting in escalation o...

Score: 8.1

CVE-2026-0510

LOW

The User Management Engine (UME) in NetWeaver Application Server for Java (NW AS Java) utilizes an obsolete cryptographic algorithm for encrypting Use...

Score: 3.0

Share CVE-2026-0579

Share on Social Media

Copy Link

Embed Code

Request Expert Analysis

Request a professional security analysis for CVE-2026-0579 from our verified experts.

Credits System

Use your credits to get expert analysis from verified security professionals. Purchase more credits anytime!

Add 3 credits for accelerated delivery

Base Cost: 8 credits
Priority Upgrade: + credits
SLA Acceleration: +3 credits
Total Cost:
Your Balance:

Insufficient Credits

You need more credits to submit this request.

Buy Credits

Report Analysis