CVE-2026-7089 | code-projects Home Service System 1.0 Appointment Booking /booking.php fname/lname cross site scripting

Inserito da Angelo Barbosa | Apr 26, 2026 | CVE

A vulnerability has been found in code-projects Home Service System 1.0 and classified as problematic. The impacted element is an unknown function of the file /booking.php of the component Appointment Booking. The manipulation of the argument fname/lname leads to cross site scripting.

This vulnerability is listed as CVE-2026-7089. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-7089 | code-projects Home Service System 1.0 Appointment Booking /booking.php fname/lname cross site scripting

Post correlati

CVE-2023-52468 | Linux Kernel up to 6.6.13/6.7.1 Kasan class_register use after free (b57196a5ec5e/0f1486dafca3/93ec4a3b7640)

CVE-2025-4894 | calmkart Django-sso-server up to 057247929a94ffc358788a37ab99e391379a4d15 common/crypto.py gen_rsa_keys inadequate encryption

CVE-2024-41007 | Linux Kernel up to 4.18 TCP tcp_retransmit_timer resource consumption (97a9063518f1)

CVE-2025-44181 | PHPGurukul Vehicle Record Management System 1.0 /admin/add-brand.php brandname cross site scripting