SQL Injection Vulnerability in Sourcecodester Storage Unit Rental Management System

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

2.7

SQL Injection Vulnerability in Sourcecodester Storage Unit Rental Management System

CVE-2026-37591

Summary

A hacker could inject malicious code into the Storage Unit Rental Management System's database, potentially stealing sensitive information or taking control of the system. This is a serious risk because it allows an attacker to access confidential data and disrupt the system's operation. Immediately update the 'view_details.php' file in the '/storage/admin/tenants' directory to fix this vulnerability.

Original title

Sourcecodester Storage Unit Rental Management System v1.0 is vulnerable to SQL injection in the file /storage/admin/tenants/view_details.php.

Original description

Sourcecodester Storage Unit Rental Management System v1.0 is vulnerable to SQL injection in the file /storage/admin/tenants/view_details.php.

Vulnerability type

CWE-89 SQL Injection

https://github.com/shininadd/cve_report/blob/main/sourcecodester/storage-unit-re...

Published: 14 Apr 2026 · Updated: 15 Apr 2026 · First seen: 14 Apr 2026