CVE-2026-4579 PUBLISHED

A vulnerability was identified in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /viewdetail.php of the component Parameters Handler. The manipulation of the argument serviceId leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

• ysi6701 (VulDB User) reporter

• VDB-352416 | code-projects Simple Laundry System Parameters viewdetail.php sql injection
• VDB-352416 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #775209 | code-projects Simple Laundry System V1.0 SQL injection
• https://github.com/anon387tdug/anon388/issues/3
• https://code-projects.org/

• SQL Injection CWE
• Injection CWE