CVE-2026-10155EPSS p10.6%

CVE-2026-10155CVE-2026-10155

Description

A vulnerability was found in Bdtask Multi-Store Inventory Management System 1.0. The impacted element is the function accounts_report_search of the file application/modules/accounts/controllers/Accounts.php of the component Accounts Report Handler. Performing a manipulation of the argument dtpToDate results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

Scoring

CVSS 4.7 ()
VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
EPSS0.21% probability of exploitation · percentile 10.6% · 2026-06-19T12:03:05Z
Last modified2026-06-01

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-10172
CVE
CVE-2025-11431
CVE
CVE-2025-5576
CVE
CVE-2026-5035
CVE
CVE-2025-5248
CVE
CVE-2026-11513
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.