CVE-2026-0586: A vulnerability was detected in code-projects Online Product Reservation System 1.0. The affected element is an unknown function of the file…

A vulnerability was detected in code-projects Online Product Reservation System 1.0. The affected element is an unknown function of the file handgunner-administrator/prod.php. Performing a manipulation of the argument cat results in cross site scripting. The attack is possible to be carried out remotely. The exploit is now public and may be used.