CVE-2026-13499 | yashpokharna2555 restaurent-management-system Registration login_register.php Username cross site scripting

A vulnerability was found in yashpokharna2555 restaurent-management-system. It has been rated as problematic. This impacts an unknown function of the file login_register.php of the component Registration Handler. Performing a manipulation of the argument Username results in cross site scripting.

This vulnerability was named CVE-2026-13499. The attack may be initiated remotely. In addition, an exploit is available.

This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-13499 | yashpokharna2555 restaurent-management-system Registration login_register.php Username cross site scripting

Post correlati

CVE-2024-6466 | NEC WebSAM DeploymentManager up to 6.8 ui layer

CVE-2024-21993 | NetApp SnapCenter up to 5.0 cleartext storage (ntap-20240705-0007)

CVE-2025-7469 | Campcodes Sales and Inventory System 1.0 /pages/product_add.php prod_name sql injection

CVE-2023-7038 | automad up to 1.10.9 User Creation dashboard cross-site request forgery