A vulnerability, which was classified as critical , was found in Sourcecodester Storage Unit Rental Management System 1.0 . This affects an unknown function of the file /storage/admin/tenants/view_details.php . Executing a manipulation can lead to sql injection. This vulnerability is registered as CVE-2026-37591 . It is possible to launch the attack remotely. No exploit is available.