CVE 5.1 MEDIUM

SourceCodester Inventory Management System User Registration Endpoint users_handler.php cross site scripting_CVE-2026-13570

5.1 / 10
MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was detected in SourceCodester Inventory Management System 1.0. Impacted is an unknown function of the file /api/users_handler.php of the component User Registration Endpoint. Performing a manipulation of the argument full_name results in cross site scripting. The attack is possible to be carried out remotely. The exploit is now public and may be used.

Basic Information

ID CVE-2026-13570
Source VulDB
Published Jun 29, 2026 at 13:15
Modified Jun 29, 2026 at 13:57

Affected Product

Vendor SourceCodester
Product Inventory Management System
Version 1.0
Affected Versions SourceCodester Inventory Management System 1.0

CWE Classification

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.