CVE-2026-4578 | code-projects Exam Form Submission 1.0 /admin/update_s3.php sname cross site scripting

Inserito da Angelo Barbosa | Mar 22, 2026 | CVE

A vulnerability was found in code-projects Exam Form Submission 1.0. It has been declared as problematic. The impacted element is an unknown function of the file /admin/update_s3.php. Executing a manipulation of the argument sname can lead to cross site scripting.

The identification of this vulnerability is CVE-2026-4578. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-4578 | code-projects Exam Form Submission 1.0 /admin/update_s3.php sname cross site scripting

Post correlati

CVE-2026-21487 | InternationalColorConsortium iccDEV up to 2.3.1.1/2.3.1.2 CIccProfile::LoadTag out-of-bounds (ID 340)

CVE-2024-1327 | Jeg Elementor Kit Plugin up to 2.6.3 on WordPress Image Box cross site scripting

CVE-2024-55224 | Vaultwarden up to 1.32.5 E-Mail Message username cross site scripting

CVE-2025-15571 | ckolivas lrzip up to 0.651 stream.c ucompthread null pointer dereference (Issue 263)