CVE-2026-5836 | code-projects Online Shoe Store 1.0 /admin/admin_product.php product_name cross site scripting

Inserito da Angelo Barbosa | Apr 8, 2026 | CVE

A vulnerability was found in code-projects Online Shoe Store 1.0. It has been classified as problematic. Affected by this issue is some unknown functionality of the file /admin/admin_product.php. The manipulation of the argument product_name leads to cross site scripting.

This vulnerability is documented as CVE-2026-5836. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2026-5836 | code-projects Online Shoe Store 1.0 /admin/admin_product.php product_name cross site scripting

Post correlati

CVE-2024-1091 | ImageRecycle PDF & Image Compression Plugin up to 3.1.13 on WordPress Plugin Data Removal reinitialize authorization

CVE-2022-49809 | Linux Kernel up to 6.0.9 x25_lapb_receive_frame memory leak

CVE-2026-1175 | birkir prime up to 0.4.0.beta.0 GraphQL Directive /graphql information exposure (Issue 546)

CVE-2025-21389 | Microsoft Windows up to Server 2025 upnphost.dll resource consumption