MEDIUM
Ahsanriaz26gmailcom
CVE published 2026-03-27
CVE-2026-30567
CVE-2026-30567 is a reflected cross-site scripting (XSS) issue affecting SourceCodester Sales and Inventory System 1.0, with the vulnerable input reaching view_product.php through the "limit" parameter. According to the supplied NVD data, the issue is network-reachable, requires user interaction, and can let an attacker inject arbitrary web script or HTML into a victim's browser via a crafted URL. The NVD [truncated]