Vulnerability in N/a

CVE-2026-30520

A Blind SQL Injection vulnerability exists in SourceCodester Loan Management System v1.0. The vulnerability is located in the ajax.php file (specifically the save_loan action). The application fails to properly sanitize user input supplied…

EPSS: 0.000 (1.2th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References