CVE-2026-9607 – itsourcecode Courier Management System parcel_list.php sql injection

CVE ID :CVE-2026-9607

Published : May 27, 2026, 12:16 a.m. | 15 minutes ago

Description :A vulnerability was found in itsourcecode Courier Management System 1.0. The affected element is an unknown function of the file /parcel_list.php. Performing a manipulation of the argument s results in sql injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-9632 – UTT HiPER 1250GW Web Management formGroupConfig strcpy stack-based overflow

CVE-2026-9631 – UTT HiPER 1250GW Web Management formConfigFastDirectionW strcpy stack-based overflow

CVE-2026-9628 – UTT HiPER 1200GW Web Management formPptpClientConfig stack-based overflow

CVE-2026-9627 – UTT HiPER 1200GW Web Management setSysAdm strcpy buffer overflow