CVE-2026-30557 in SourceCodester Sales and Inventory Systeminformation

Résumé (Anglaise)

A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_category.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.

Responsable

MITRE

Réserver

04/03/2026

Divulgation

30/03/2026

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
354202	SourceCodester Sales and Inventory System Parameter add_category.php cross site scripting	79	Non défini	Non défini	CVE-2026-30557

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

◂ PrécédentAperçuSuivant ▸

Do you need the next level of professionalism?

Upgrade your account now!