A vulnerability identified as problematic has been detected in SourceCodester Online Quiz System up to 1.0. Affected by this vulnerability is an unknown functionality of the file endpoint/add-question.php. Performing a manipulation of the argument quiz_question results in cross site scripting.
This vulnerability is cataloged as CVE-2026-4973. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
