{"id":76644,"date":"2026-02-08T17:46:25","date_gmt":"2026-02-08T14:16:25","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2026-2154-sourcecodester-patrick-mvuma-patients-waiting-area-queue-management-system-patient-registration-registration-php-cross-site-scripting\/"},"modified":"2026-02-08T17:46:25","modified_gmt":"2026-02-08T14:16:25","slug":"cve-2026-2154-sourcecodester-patrick-mvuma-patients-waiting-area-queue-management-system-patient-registration-registration-php-cross-site-scripting","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2026-2154-sourcecodester-patrick-mvuma-patients-waiting-area-queue-management-system-patient-registration-registration-php-cross-site-scripting\/","title":{"rendered":"CVE-2026-2154 &#8211; SourceCodester\/Patrick Mvuma Patients Waiting Area Queue Management System Patient Registration registration.php cross site scripting"},"content":{"rendered":"<p>CVE ID : CVE-2026-2154<\/p>\n<p>Published :  Feb. 8, 2026, 2:16 p.m. | 1\u00a0hour, 3\u00a0minutes ago<\/p>\n<p>Description : A vulnerability was identified in SourceCodester\/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Impacted is an unknown function of the file \/registration.php of the component Patient Registration Module. The manipulation of the argument First Name leads to cross site scripting. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.<\/p>\n<p>Severity: 5.3 | MEDIUM<\/p>\n<p>Visit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2026-2154 Published : Feb. 8, 2026, 2:16 p.m. | 1\u00a0hour, 3\u00a0minutes ago Description : A vulnerability was identified in SourceCodester\/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Impacted is an unknown function of the file \/registration.php of the component Patient Registration Module. The manipulation of the argument First Name leads to &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-76644","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/76644","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=76644"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/76644\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=76644"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=76644"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=76644"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}