CVE-2026-15703

Summary

A vulnerability was detected in SourceCodester Simple and Nice Shopping Cart Script 1.0. This vulnerability affects unknown code of the file /admin/userproductdeletequery.php. Performing a manipulation of the argument user_id results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.

Affected Software

VendorProductVersion RangeStatus
SourceCodesterSimple and Nice Shopping Cart Script1.0affected

Weaknesses

  • CWE-89: SQL Injection
  • CWE-74: Injection

References