216.73.217.172

CVE-2026-14690

· Published 05/07/2026 04:17 · Author: The MITRE Corporation

Labels: CVE-2026-14690

Essential information

Published
05/07/2026 04:17
Modified
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
7.5 (v2) 7.3 HIGH (v3.1) 5.5 MEDIUM (v4.0)
CISA KEV
No
CWE
CWE-266
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CVSS metrics

Description

A weakness has been identified in SourceCodester Multi-Vendor Online Grocery Management System 1.0. This affects the function save_users of the file classes/Users.php. This manipulation causes improper authorization. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.

NVD status

NVD
View on NVD