VulnerabilityCVE-2026-30558CVSS 5.4

CVE-2026-30558: A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_customer.php file via the "msg" parameter. The app

NVD/CVE · [email protected]3/30/2026, 4:16:05 PM 54 points

Summary

A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_customer.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.

Metadata

Article ID: #480438
Source: NVD/CVE
Scraped At: 4/1/2026, 6:11:25 AM
URL Hash: e1655fd4ca4a0a5e…

CVE-2026-30558: A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_customer.php file via the "msg" parameter. The app

Summary

Tags

Metadata