Loading market data...
← Back to CVE feed

CVE-2026-13567

MEDIUM CVSS 4.3 View on NVD ↗

Description

A security flaw has been discovered in code-projects Online Music Site 1.0. This affects an unknown part of the file /Frontend/Feedback.php of the component POST Request Handler. The manipulation of the argument fname/femail/faddress/fmessage results in cross site scripting. The attack may be launched remotely. The exploit has been released to the public and may be used for attacks.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Published: Jun 29, 2026 14:16 UTC Modified: Jun 29, 2026 18:46 UTC