Loading market data...
← Back to CVE feed

CVE-2026-13570

LOW CVSS 3.5 View on NVD ↗

Description

A vulnerability was detected in SourceCodester Inventory Management System 1.0. Impacted is an unknown function of the file /api/users_handler.php of the component User Registration Endpoint. Performing a manipulation of the argument full_name results in cross site scripting. The attack is possible to be carried out remotely. The exploit is now public and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Published: Jun 29, 2026 14:16 UTC Modified: Jun 29, 2026 18:46 UTC