CVE-2026-30556 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the index.php file…
Medium CVSS: 6.1

CVE-2026-30556

A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the index.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.
Vendor
Ahsanriaz26gmailcom
Product
Sales And Inventory System
CWE
CWE-79
Yayın Tarihi
2026-03-30 16:16:05
Güncelleme
2026-04-01 15:42:17
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-79 Sales And Inventory System MEDIUM Ahsanriaz26gmailcom 2026

Referanslar

https://github.com/meifukun/Web-Security-PoCs/blob/main/Inventory-System/XSS-Index-msg.md https://github.com/meifukun/Web-Security-PoCs/blob/main/Inventory-System/XSS-Index-msg.md