CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-2115

A flaw has been found in itsourcecode Society Management System 1.0. This issue affects some unknown processing of the file /admin/delete_expenses.php. This manipulation of the argument expenses_id causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.1%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.5

References

https://github.com/zpf7029/oblong/issues/2
https://itsourcecode.com/
https://vuldb.com/?ctiid.344690
https://vuldb.com/?id.344690
https://vuldb.com/?submit.746797

Products affected by CVE-2026-2115

Angeljudesuarez » Society Management System » Version: 1.0

cpe:2.3:a:angeljudesuarez:society_management_system:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-2115

Products

Pricing

Contact Us