CVE-2026-9410
The CVE refers to Sushmi-pal Invoice-System (Profile Workflow) with a vulnerability in the /profile code path where manipulation of the ID argument causes improper authorization. Attackable remotely and previously disclosed publicly; the vendor’s release model (rolling updates) means no fixed ver...