Detections
Analytics

CVE-2026-3401

low

Description

A weakness has been identified in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown part. This manipulation causes session expiration. Remote exploitation of the attack is possible. The complexity of an attack is rather high. It is indicated that the exploitability is difficult. The exploit has been made available to the public and could be used for attacks.

References

https://www.sourcecodester.com/

https://vuldb.com/?submit.762795

https://vuldb.com/?id.348296

https://vuldb.com/?ctiid.348296

https://github.com/hiranerakkot/Web-based-Pharmacy-Product-Management-System/blob/main/README.md

Details

Source: Mitre, NVD

Published: 2026-03-02

Updated: 2026-03-02

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:N/AC:H/Au:S/C:N/I:P/A:N

Severity: Low

CVSS v3

Base Score: 3.1

Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Severity: Low

CVSS v4

Base Score: 2.3

Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Severity: Low

EPSS

EPSS: 0.00027