CVE-2026-3761 — MEDIUM (5.4)

Vulnerability Description

A flaw has been found in SourceCodester Client Database Management System 1.0. This issue affects some unknown processing of the file /superadmin_user_delete.php of the component Endpoint. Executing a manipulation of the argument user_id can lead to improper authorization. The attack may be performed from remote. The exploit has been published and may be used.

CVSS Score

5.4

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Lerouxyxchire	Client Database Management System	1.0

Related Weaknesses (CWE)

CWE-266 CWE-285

References

https://gist.github.com/Adarshh-A/dd8884d768d9dde9072fe5efce453824ExploitThird Party Advisory
https://vuldb.com/?ctiid.349739Permissions RequiredVDB Entry
https://vuldb.com/?id.349739Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.768120Third Party AdvisoryVDB Entry
https://www.sourcecodester.com/Product

FAQ

What is CVE-2026-3761?

CVE-2026-3761 is a vulnerability with a CVSS score of 5.4 (MEDIUM). A flaw has been found in SourceCodester Client Database Management System 1.0. This issue affects some unknown processing of the file /superadmin_user_delete.php of the component Endpoint. Executing a...

How severe is CVE-2026-3761?

CVE-2026-3761 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-3761?

Check the references section above for vendor advisories and patch information. Affected products include: Lerouxyxchire Client Database Management System.