CVE-2026-4849

Name of the Vulnerable Software and Affected Versions code-projects Simple Laundry System version 1.0

Description A cross site scripting issue exists in the Parameter Handler component of code-projects Simple Laundry System. The issue is related to the manipulation of the firstName argument within the /modify.php file. The attack can be initiated remotely and the exploit is publicly available.

Recommendations Apply any available updates to address the issue in the Parameter Handler component of the affected system. As a temporary workaround, consider restricting access to the /modify.php file. Avoid using the firstName parameter in the affected file until the issue is resolved.