CVE-2026-30526 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Zoo Management System v1.0. The vulnerability is located in the login page, specif…
Medium CVSS: 6.1

CVE-2026-30526

A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Zoo Management System v1.0. The vulnerability is located in the login page, specifically within the msg parameter. The application reflects the content of the msg parameter back to the user without proper HTML encoding or sanitization. This allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Vendor
Pushpam02
Product
Zoo Management System
CWE
CWE-79
Yayın Tarihi
2026-04-01 15:22:59
Güncelleme
2026-04-07 12:05:46
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-79 Zoo Management System MEDIUM Pushpam02 2026

Referanslar

https://github.com/meifukun/Web-Security-PoCs/blob/main/Zoo-Management-System/Reflected-XSS-Login-msg.md