PT-2026-53266 · Sourcecodester · Inventory Management System

Ayush8816

Published

2026-06-29

Updated

2026-06-29

CVE-2026-13570

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:P/A:N

A vulnerability was detected in SourceCodester Inventory Management System 1.0. Impacted is an unknown function of the file /api/users handler.php of the component User Registration Endpoint. Performing a manipulation of the argument full name results in cross site scripting. The attack is possible to be carried out remotely. The exploit is now public and may be used.

Fix

Code Injection

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94CWE-79

Related Identifiers

CVE-2026-13570

Affected Products

Inventory Management System

PT-2026-53266 · Sourcecodester · Inventory Management System

CVE-2026-13570

Weakness Enumeration

Related Identifiers

Affected Products

References · 6