Medium severity6.3NVD Advisory· Published Jun 1, 2026· Updated Jun 2, 2026
CVE-2026-10296
CVE-2026-10296
Description
A vulnerability was determined in itsourcecode Fees Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php. Executing a manipulation of the argument Username can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 1.0
Patches
Vulnerability mechanics
References
6News mentions
1- Itsourcecode Systems: Batch of 15 SQLi and XSS Vulnerabilities DisclosedVypr Intelligence · Jun 2, 2026