SourceCodester Inventory System Improper Authorization Vulnerability in Account Creation Handler

Vulnerability

A vulnerability allowing improper authorization has been identified in SourceCodester Inventory System version 1.0. The issue arises in the Account Creation Handler component, specifically within the file '/Product_Inventory/api/users_handler.php'. The vulnerability is triggered by manipulating the 'ROLE' argument, which could potentially be exploited remotely. This flaw could be used to bypass authorization controls, leading to unauthorized actions or access within the application.

Impact

Exploitation of this vulnerability could allow unauthorized users to gain access or privileges they should not have, potentially leading to unauthorized modifications or actions within the inventory system.

Added: Jun 8, 2026, 4:05 PM

Updated: Jun 8, 2026, 4:05 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

9.3

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

9.3

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SourceCodester Inventory System Improper Authorization Vulnerability in Account Creation Handler

Vulnerability

Impact

Affected Products

SourceCodester Inventory System

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating