CVE-2026-4784

HIGH NVD

CVSS Score 7.3

Severity HIGH

Published Mar 25, 2026

Vendor unknown

Description

A vulnerability was found in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /checkcheckout.php of the component Parameter Handler. The manipulation of the argument serviceId results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and could be used.

References

https://code-projects.org/
https://github.com/zzb1388/cve2/issues/1
https://vuldb.com/?ctiid.352801
https://vuldb.com/?id.352801
https://vuldb.com/?submit.775811