CVE-2026-26699

Description

sourcecodester Personnel Property Equipment System v1.0 is vulnerable to arbitrary code execution in ip/ppes/admin/admin_change_picture.php.

PUBLISHED Reserved 2026-02-16 | Published 2026-03-02 | Updated 2026-03-02 | Assigner mitre

References

github.com/...er/personel-property-equipment-system/RCE-1.md

cve.org (CVE-2026-26699)

nvd.nist.gov (CVE-2026-26699)

Download JSON