Vulnerability Details CVE-2025-56274
SourceCodester Web-based Pharmacy Product Management System 1.0 is vulnerable to Incorrect Access Control, which allows low-privileged users to forge high privileged (such as admin) sessions and perform sensitive operations such as adding new users.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.5%
CVSS Severity
CVSS v3 Score 8.1
References
Products affected by CVE-2025-56274
-
cpe:2.3:a:seniorwalter:web-based_pharmacy_product_management_system:1.0