CVE-2026-4578 in Exam Form Submissioninfo

Summary

by MITRE • 03/23/2026

A vulnerability was determined in code-projects Exam Form Submission 1.0. The impacted element is an unknown function of the file /admin/update_s3.php. Executing a manipulation of the argument sname can lead to cross site scripting. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

03/23/2026

Moderation

accepted

Entry

VDB-352415

CPE

ready

CWE

CWE-79 (confirmed)

Exploit

Download

CVSS

2.4 (VulDB)

EPSS

0.00041

KEV

Activities

very low

Sector

Hostingprovider, Transportation, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-4578
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-4578
CVE Details	https://www.cvedetails.com/cve/CVE-2026-4578/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!