CVE-2026-10255

Description

A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is the function sell_statement of the file application/controllers/ShowForm.php. Such manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

References

• https://github.com/timeflies123/cve/issues/7
• https://vuldb.com/cve/CVE-2026-10255
• https://vuldb.com/submit/824148
• https://vuldb.com/vuln/367533
• https://vuldb.com/vuln/367533/cti