CVE-2026-6150

MEDIUM CVSS 4.3 View on NVD ↗

Description

A vulnerability has been found in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /checkupdatestatus.php. The manipulation of the argument serviceId leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

References

https://code-projects.org/
https://github.com/zheng-lv/CVE-/issues/1
https://vuldb.com/submit/796309
https://vuldb.com/vuln/357030
https://vuldb.com/vuln/357030/cti

Published: Apr 13, 2026 03:16 UTC Modified: Apr 13, 2026 15:01 UTC