CVE-2026-8128
HIGH NVDCVSS Score
7.3
Severity
HIGH
Source
NVD
Published
May 08, 2026
Description
A vulnerability was found in SourceCodester SUP Online Shopping 1.0. The affected element is an unknown function of the file /admin/viewmsg.php. Performing a manipulation of the argument msgid results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used.