CVE-2026-6034 | code-projects Vehicle Showroom Management System 1.0 ProfitAndLossReport.php BRANCH_ID cross site scripting

Inserito da Angelo Barbosa | Apr 9, 2026 | CVE

A vulnerability was found in code-projects Vehicle Showroom Management System 1.0. It has been declared as problematic. Impacted is an unknown function of the file /BranchManagement/ProfitAndLossReport.php. Executing a manipulation of the argument BRANCH_ID can lead to cross site scripting.

The identification of this vulnerability is CVE-2026-6034. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-6034 | code-projects Vehicle Showroom Management System 1.0 ProfitAndLossReport.php BRANCH_ID cross site scripting

Post correlati

CVE-2025-9359 | Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 RP_checkCredentialsByBBS ssidhex/pwd stack-based overflow

CVE-2024-33560 | 8theme XStore Plugin up to 9.3.8 on WordPress path traversal

CVE-2024-6775 | Google Chrome up to 126.0.6478.126 Media Stream use after free (ID 347373)

CVE-2026-4554 | Tenda F453 1.0.0.3 /goform/WriteFacMac FormWriteFacMac mac command injection