PT-2026-28760 · Code Projects · Exam Form Submission
Hajimi
·
Published
2026-03-30
·
Updated
2026-03-30
·
CVE-2026-5106
CVSS v3.1
4.8
Medium
| Vector | AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
code-projects Exam Form Submission version 1.0
Description
A cross site scripting issue exists in code-projects Exam Form Submission 1.0. The issue is located in an unknown function within the
/admin/update fst.php file. Manipulation of the sname argument can trigger the issue, allowing for remote attacks. The exploit has been published.Recommendations
Apply a fix for code-projects Exam Form Submission version 1.0 to address the cross site scripting issue in the
/admin/update fst.php file.Exploit
Fix
XSS
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Exam Form Submission