CVE-2026-5835 | code-projects Online Shoe Store 1.0 admin_football.php product_name cross site scripting

Inserito da Angelo Barbosa | Apr 8, 2026 | CVE

A vulnerability was found in code-projects Online Shoe Store 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin_football.php. Executing a manipulation of the argument product_name can lead to cross site scripting.

This vulnerability is registered as CVE-2026-5835. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2026-5835 | code-projects Online Shoe Store 1.0 admin_football.php product_name cross site scripting

Post correlati

CVE-2025-14520 | baowzh hfly up to 638ff9abe9078bc977c132b37acbe1900b63491c delfile filename path traversal

CVE-2025-11479 | SourceCodester Wedding Reservation Management System 1.0 function.php insertReservation number sql injection

CVE-2025-1759 | IBM Concert Software up to 1.1.0 heap inspection

CVE-2024-3447 | QEMU sdhci_write_dataport heap-based overflow