CVE-2026-5647 | code-projects Online Shoe Store 1.0 Add Product Page /admin/admin_feature.php product_name cross site scripting

Inserito da Angelo Barbosa | Apr 5, 2026 | CVE

A vulnerability, which was classified as problematic, was found in code-projects Online Shoe Store 1.0. This affects an unknown part of the file /admin/admin_feature.php of the component Add Product Page. The manipulation of the argument product_name results in cross site scripting.

This vulnerability is cataloged as CVE-2026-5647. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-5647 | code-projects Online Shoe Store 1.0 Add Product Page /admin/admin_feature.php product_name cross site scripting

Post correlati

CVE-2025-61524 | Casdoor up to 2.25.x Permission Verification permission

CVE-2023-52046 | Webmin up to 2.105 Execute cron job as cross site scripting

CVE-2025-9757 | Campcodes Courier Management System 1.0 /ajax.php login email sql injection

CVE-2025-4031 | PHPGurukul Pre-School Enrollment System 1.0 /admin/aboutus.php pagetitle sql injection