CVE-2026-10155 – Bdtask Multi-Store Inventory Management System Accounts Report Accounts.php accounts_report_search sql injection

CVE ID :CVE-2026-10155

Published : May 31, 2026, 12:16 a.m. | 16 minutes ago

Description :A vulnerability was found in Bdtask Multi-Store Inventory Management System 1.0. The impacted element is the function accounts_report_search of the file application/modules/accounts/controllers/Accounts.php of the component Accounts Report Handler. Performing a manipulation of the argument dtpToDate results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

Severity: 5.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-10159 – TRENDnet TEW-432BRP formSysLog stack-based overflow

CVE-2026-10158 – TRENDnet TEW-432BRP formPortFw stack-based overflow

CVE-2026-10157 – Open5GS NGAP PathSwitchRequest Message ngap-handler.c improper authentication

CVE-2026-10162 – TRENDnet TEW-432BRP formSetPassword stack-based overflow