CVE-2026-4013

Description

A vulnerability was identified in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown function of the file add_admin.php. Such manipulation leads to improper authorization. The attack may be launched remotely.

PUBLISHED Reserved 2026-03-11 | Published 2026-03-12 | Updated 2026-03-12 | Assigner VulDB

Problem types

Improper Authorization

Incorrect Privilege Assignment

Product status

Timeline

Credits

MuhdFarhan (VulDB User) reporter

VulDB coordinator

References

vuldb.com/?id.350535 (VDB-350535 | SourceCodester Web-based Pharmacy Product Management System add_admin.php improper authorization) vdb-entry

vuldb.com/?ctiid.350535 (VDB-350535 | CTI Indicators (IOB, IOC, TTP, IOA)) signature permissions-required

vuldb.com/?submit.769781 (Submit #769781 | SourceCodester Web-based Pharmacy Product Management System 1.0 Improper Access Controls) third-party-advisory

www.sourcecodester.com/ product

cve.org (CVE-2026-4013)

nvd.nist.gov (CVE-2026-4013)

Download JSON