CVE-2026-7281 | SourceCodester Pharmacy Sales and Inventory System 1.0 /index.php?page=supplier Name cross site scripting

Inserito da Angelo Barbosa | Apr 28, 2026 | CVE

A vulnerability described as problematic has been identified in SourceCodester Pharmacy Sales and Inventory System 1.0. The impacted element is the function supplier of the file /index.php?page=supplier. Executing a manipulation of the argument Name can lead to cross site scripting.

This vulnerability appears as CVE-2026-7281. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-7281 | SourceCodester Pharmacy Sales and Inventory System 1.0 /index.php?page=supplier Name cross site scripting

Post correlati

CVE-2026-5677 | Totolink A7100RU 7.4cu.2313_b20191024 /cgi-bin/cstecgi.cgi CsteSystem resetFlags os command injection

CVE-2026-1304 | Membership Plugin up to 3.2.18 on WordPress Invoice Setting cross site scripting

CVE-2024-10420 | SourceCodester Attendance and Payroll System 1.0 update.php upload image unrestricted upload

CVE-2024-26597 | Linux Kernel up to 6.7.1 rmnet lib/nlattr.c rmnet_policy out-of-bounds