A vulnerability was found in SourceCodester Storage Unit Rental Management System 1.0 and classified as critical . Affected is an unknown function of the file /storage/admin/maintenance/manage_storage_unit.php . The manipulation results in sql injection. This vulnerability is reported as CVE-2026-37589 . The attack can be launched remotely. No exploit exists.