CVE-2026-6035 | code-projects Vehicle Showroom Management System 1.0 ServiceAndSalesReport.php BRANCH_ID cross site scripting

Inserito da Angelo Barbosa | Apr 9, 2026 | CVE

A vulnerability was found in code-projects Vehicle Showroom Management System 1.0. It has been rated as problematic. The affected element is an unknown function of the file /BranchManagement/ServiceAndSalesReport.php. The manipulation of the argument BRANCH_ID leads to cross site scripting.

This vulnerability is referenced as CVE-2026-6035. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-6035 | code-projects Vehicle Showroom Management System 1.0 ServiceAndSalesReport.php BRANCH_ID cross site scripting

Post correlati

CVE-2024-7307 | SourceCodester Establishment Billing Management System 1.0 /manage_billing.php id sql injection

CVE-2025-66635 | Seiko Epson Web Config Data stack-based overflow

CVE-2025-1042 | GitLab Enterprise Edition up to 17.6.4/17.7.3/17.8.1 Repository file access (Issue 508499)

CVE-2025-67636 | Jenkins up to 2.540/LTS 2.528.2 permission