Auth bypass in Mayurik Pet_grooming_management_software
CVE-2026-3738
A vulnerability was identified in SourceCodester Pet Grooming Management Software 1.0. This vulnerability affects unknown code of the component Financial Report Page. The manipulation leads to improper authorization. Remote exploitation of…
EPSS: 0.000 (15.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L.
Affected products
- Mayurik Pet_grooming_management_software — versions 1.0
- Sourcecodester Pet Grooming Management Software — versions 1.0
Weakness classification (CWE)
References
- VDB-349716 | SourceCodester Pet Grooming Management Software Financial Report improper authorization (Third Party Advisory, VDB Entry, vdb-entry)
- VDB-349716 | CTI Indicators (IOB, IOC, TTP) (signature, Permissions Required, permissions-required, VDB Entry)
- Submit #767321 | SourceCodester Pet Grooming Management Software 1.0 Improper Authorization (Third Party Advisory, VDB Entry, third-party-advisory)
- cna@vuldb.com (Exploit, Third Party Advisory, exploit)
- cna@vuldb.com (Product, product)
Frequently asked questions
- What is CVE-2026-3738?
- CVE-2026-3738 is a medium-severity vulnerability in Mayurik Pet_grooming_management_software, classified under Incorrect Privilege Assignment. CVSS score: 6.3/10. Published 2026-03-08.
- How severe is CVE-2026-3738?
- Medium severity. CVSS v3 base score is 6.3 out of 10.