Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.9
Simple Laundry System 1.0 exposes user data to hackers
CVE-2026-4908
Summary
Code-projects Simple Laundry System 1.0 has a security flaw that allows hackers to access user data. This happens when the system processes user input without checking it properly. Users should update to the latest version of the software to prevent unauthorized access to sensitive user information.
Original title
A security flaw has been discovered in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /modstaffinfo.php of the component Parameter Handler. The manipulation o...
Original description
A security flaw has been discovered in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /modstaffinfo.php of the component Parameter Handler. The manipulation of the argument userid results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks.
nvd CVSS2.0
7.5
nvd CVSS3.1
7.3
nvd CVSS4.0
6.9
Vulnerability type
CWE-74
Injection
CWE-89
SQL Injection
Published: 27 Mar 2026 · Updated: 27 Mar 2026 · First seen: 27 Mar 2026