VYPR

CVE-2026-10289-XSS

by Xmyronn

CVEs (2)

  • CVE-2026-11518MedJun 8, 2026
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was identified in SourceCodester Inventory System 1.0. Affected is an unknown function of the file /users.php of the component User Management Page. The manipulation of the argument fullname/username leads to cross site scripting. The attack is possible to be…

  • CVE-2026-10289MedJun 1, 2026
    risk 0.28cvss 4.3epss 0.00

    A security flaw has been discovered in code-projects Hotel and Tourism Reservation System 1.0. Impacted is an unknown function of the file /ht/tour.php. Performing a manipulation of the argument name /email /people /number results in cross site scripting. The attack can be…