Security Advisory

CVE-2025-56274

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-15 00:00:00
Last updated 2026-07-05 01:12:00
Assigner mitre
State PUBLISHED

Description

SourceCodester Web-based Pharmacy Product Management System 1.0 is vulnerable to Incorrect Access Control, which allows low-privileged users to forge high privileged (such as admin) sessions and perform sensitive operations such as adding new users.