Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.9
Simple Laundry System 1.0: Remote SQL Injection via Manipulated User Input
CVE-2026-5540
Summary
A weakness in Simple Laundry System 1.0 allows attackers to manipulate user data, potentially accessing sensitive information. This could happen if an attacker sends malicious input to the system. To protect your data, update to the latest version of the software.
Original title
A vulnerability has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /modifymember.php of the component Parameter Handler. Such manipulatio...
Original description
A vulnerability has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /modifymember.php of the component Parameter Handler. Such manipulation of the argument firstName leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
nvd CVSS3.1
7.3
nvd CVSS2.0
7.5
nvd CVSS4.0
6.9
Vulnerability type
CWE-74
Injection
CWE-89
SQL Injection
Published: 5 Apr 2026 · Updated: 5 Apr 2026 · First seen: 5 Apr 2026