PatchSiren

Pushpam02 CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM Pushpam02 CVE published 2026-04-01

CVE-2026-30526

CVE-2026-30526 is a reflected cross-site scripting issue in Zoo Management System v1.0’s login page. The application reflects the `msg` parameter back to the browser without proper HTML encoding or sanitization, allowing a remote attacker to inject script or HTML through a crafted URL.