CVE-2026-3766 | SourceCodester Web-based Pharmacy Product Management System 1.0 edit-profile.php fullname cross site scripting

Inserito da Angelo Barbosa | Mar 7, 2026 | CVE

A vulnerability identified as problematic has been detected in SourceCodester Web-based Pharmacy Product Management System 1.0. This impacts an unknown function of the file edit-profile.php. Performing a manipulation of the argument fullname results in cross site scripting.

This vulnerability was named CVE-2026-3766. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-3766 | SourceCodester Web-based Pharmacy Product Management System 1.0 edit-profile.php fullname cross site scripting

Post correlati

CVE-2024-22715 | Stupid Simple CMS up to 1.2.4 /admin-edit.php cross-site request forgery

CVE-2024-8577 | TOTOLINK AC1200 T8/AC1200 T10 4.1.5cu.861_B20230220/4.1.8cu.5207 /cgi-bin/cstecgi.cgi setStaticDhcpRules desc buffer overflow

CVE-2024-7537 | oFono 1.34 QMI SMS out-of-bounds (ZDI-24-1077)

CVE-2024-7165 | SourceCodester School Fees Payment System 1.0 /view_payment.php ef_id sql injection