A vulnerability classified as critical was found in SourceCodester Inventory System 1.0 . Affected by this vulnerability is an unknown functionality of the file /Product_Inventory/api/users_handler.php of the component Account Creation Handler . The manipulation of the argument ROLE results in improper authorization. This vulnerability was named CVE-2026-11519 . The attack may be performed from remote. In addition, an exploit is available.