UNKNOWNCVE-2026-5034

code-projects Accounting System Parameter edit_costumer.php sql injection

Platform

php

Component

cve

A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /edit_costumer.php of the component Parameter Handler. This manipulation of the argument cos_id causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.

How to fix

Actualizar el sistema Accounting System a una versión parcheada que corrija la vulnerabilidad de inyección SQL en el archivo edit_costumer.php. Si no hay una versión disponible, se recomienda contactar al proveedor para obtener un parche o considerar alternativas más seguras.

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free