A vulnerability was identified in SourceCodester Online Book Store System 1.0. This issue affects some unknown processing of the component User Management Module. Such manipulation of the argument Name/Username leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and might be used.
History

Mon, 13 Jul 2026 05:30:00 +0000

Type Values Removed Values Added
Description A vulnerability was identified in SourceCodester Online Book Store System 1.0. This issue affects some unknown processing of the component User Management Module. Such manipulation of the argument Name/Username leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and might be used.
Title SourceCodester Online Book Store System User Management cross site scripting
First Time appeared Sourcecodester
Sourcecodester online Book Store System
Weaknesses CWE-79
CWE-94
CPEs cpe:2.3:a:sourcecodester:online_book_store_system:*:*:*:*:*:*:*:*
Vendors & Products Sourcecodester
Sourcecodester online Book Store System
References
Metrics cvssV2_0

{'score': 3.3, 'vector': 'AV:N/AC:L/Au:M/C:N/I:P/A:N/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 2.4, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 2.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-07-13T04:30:08.174Z

Updated: 2026-07-13T04:30:08.174Z

Reserved: 2026-07-12T16:00:14.084Z

Link: CVE-2026-15532

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.