CVE-2026-4972 | code-projects Online Reviewer System up to 1.0 btn_functions.php Description cross site scripting

Inserito da Angelo Barbosa | Mar 27, 2026 | CVE

A vulnerability categorized as problematic has been discovered in code-projects Online Reviewer System up to 1.0. Affected is an unknown function of the file /system/system/students/assessments/databank/btn_functions.php. Such manipulation of the argument Description leads to cross site scripting.

This vulnerability is listed as CVE-2026-4972. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-4972 | code-projects Online Reviewer System up to 1.0 btn_functions.php Description cross site scripting

Post correlati

CVE-2024-45489 | Arc up to 31.0.101.5081 Privilege Escalation

CVE-2024-3144 | DedeCMS 5.7 makehtml_spec.php cross-site request forgery

CVE-2020-13481 | Lexmark Products up to 2020-05-25 cross site scripting

CVE-2023-6760 | Thecosy IceCMS up to 2.0.1 user session