CVE-2026-0586 – code-projects Online Product Reservation System prod.php cross site scripting

CVE ID : CVE-2026-0586

Published : Jan. 5, 2026, 11:17 a.m. | 1 hour, 8 minutes ago

Description : A vulnerability was detected in code-projects Online Product Reservation System 1.0. The affected element is an unknown function of the file handgunner-administrator/prod.php. Performing a manipulation of the argument cat results in cross site scripting. The attack is possible to be carried out remotely. The exploit is now public and may be used.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…