Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.9
Simple Laundry System 1.0 SQL Injection via Malformed Search Query
CVE-2026-5564
Summary
The Simple Laundry System 1.0 has a security weakness that allows hackers to inject malicious code into the system. This could allow them to access sensitive data or take control of the system. Update to the latest version of the software to protect against potential attacks.
Original title
A weakness has been identified in code-projects Simple Laundry System 1.0. Affected by this vulnerability is an unknown functionality of the file /searchguest.php of the component Parameter Handler...
Original description
A weakness has been identified in code-projects Simple Laundry System 1.0. Affected by this vulnerability is an unknown functionality of the file /searchguest.php of the component Parameter Handler. This manipulation of the argument searchServiceId causes sql injection. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks.
nvd CVSS2.0
7.5
nvd CVSS3.1
7.3
nvd CVSS4.0
6.9
Vulnerability type
CWE-74
Injection
CWE-89
SQL Injection
Published: 5 Apr 2026 · Updated: 5 Apr 2026 · First seen: 5 Apr 2026