CVE-2026-1421

CWE-79Cross-site Scripting (XSS)CWE-94Code Injection3 documents3 sources
Severity
5.1MEDIUM
EPSS
0.0%
top 98.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Code-projects Online Examination SystemFabian Online Examination System
Timeline
PublishedJan 26

Description

A vulnerability has been found in code-projects Online Examination System 1.0. Affected is an unknown function of the component Add Pages. Such manipulation leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

🔴Vulnerability Details

2
CVEList
code-projects Online Examination System Add Pages cross site scripting2026-01-26
GHSA
GHSA-f48h-x82c-69jw: A vulnerability has been found in code-projects Online Examination System 12026-01-26
CVE-2026-1421 (MEDIUM CVSS 5.1) | A vulnerability has been found in c | cvebase.io