VulnerabilityCVE-2026-30557CVSS 5.4

CVE-2026-30557: A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_category.php file via the "msg" parameter. The app

NVD/CVE · [email protected]3/30/2026, 4:16:05 PM 54 points

Summary

A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_category.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.

Metadata

Article ID: #480437
Source: NVD/CVE
Scraped At: 4/1/2026, 6:11:25 AM
URL Hash: 5d66dd13b8e22f51…

CVE-2026-30557: A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_category.php file via the "msg" parameter. The app

Summary

Tags

Metadata