CVE-2026-13567 | code-projects Online Music Site 1.0 POST Request /Frontend/Feedback.php fname/femail/faddress/fmessage cross site scripting

Inserito da Angelo Barbosa | Giu 28, 2026 | CVE

A vulnerability was found in code-projects Online Music Site 1.0 and classified as problematic. This affects an unknown part of the file /Frontend/Feedback.php of the component POST Request Handler. The manipulation of the argument fname/femail/faddress/fmessage results in cross site scripting.

This vulnerability is cataloged as CVE-2026-13567. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-13567 | code-projects Online Music Site 1.0 POST Request /Frontend/Feedback.php fname/femail/faddress/fmessage cross site scripting

Post correlati

CVE-2023-26211 | Fortinet FortiSOAR up to 6.4.1/6.4.4/7.0.3/7.2.2/7.3.2 Communications Module cross site scripting (FG-IR-23-088)

CVE-2024-55503 | termius up to 9.8.x DYLD_INSERT_LIBRARIES Local Privilege Escalation

CVE-2025-6085 | Make Connector Plugin up to 1.5.10 on WordPress upload_media unrestricted upload

CVE-2025-15567 | Vivo Health missing authentication