CVE-2026-2224 – code-projects Online Reviewer System btn_functions.php cross site scripting

CVE ID : CVE-2026-2224

Published : Feb. 9, 2026, 8:32 a.m. | 47 minutes ago

Description : A vulnerability was detected in code-projects Online Reviewer System 1.0. This affects an unknown part of the file /system/system/admins/manage/users/btn_functions.php. The manipulation of the argument firstname results in cross site scripting. It is possible to launch the attack remotely. The exploit is now public and may be used.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…