Medium severity4.3NVD Advisory· Published May 25, 2026· Updated May 26, 2026
CVE-2026-9418
CVE-2026-9418
Description
A flaw has been found in code-projects Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /changepassemp.php. Executing a manipulation of the argument ID can lead to cross site scripting. The attack may be performed from remote. The exploit has been published and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =1.0
Patches
Vulnerability mechanics
References
5News mentions
1- Code Projects Employee Management System: Nine SQLi and XSS Flaws Disclosed in a Single BatchVypr Intelligence · May 25, 2026