CVE-2026-10244

🗓️ 01 Jun 2026 09:15:08Reported by VulDBType

cve🔗 web.nvd.nist.gov👁 19 Views🌐 WEB

Cross site scripting in SourceCodester Pharmacy System enables remote manipulation of medicine_name.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-10244	1 Jun 202609:15	–	attackerkb
Circl	CVE-2026-10244	1 Jun 202613:30	–	circl
CNNVD	SourceCodester Pharmacy Sales and Inventory System 代码注入漏洞	1 Jun 202600:00	–	cnnvd
Cvelist	CVE-2026-10244 SourceCodester Pharmacy Sales and Inventory System main create_medicine_name cross site scripting	1 Jun 202609:15	–	cvelist
EUVD	EUVD-2026-33616	1 Jun 202609:15	–	euvd
NVD	CVE-2026-10244	1 Jun 202611:16	–	nvd
Positive Technologies	PT-2026-45390	1 Jun 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-10244	5 Jun 202619:48	–	redhatcve
Vulnrichment	CVE-2026-10244 SourceCodester Pharmacy Sales and Inventory System main create_medicine_name cross site scripting	1 Jun 202609:15	–	vulnrichment

Vulners

Node

sourcecodester pharmacy_sales_and_inventory_systemMatch1.0

[
  {
    "vendor": "SourceCodester",
    "product": "Pharmacy Sales and Inventory System",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      }
    ],
    "cpes": [
      "cpe:2.3:a:sourcecodester:pharmacy_sales_and_inventory_system:*:*:*:*:*:*:*:*"
    ]
  }
]

Source	Link
sourcecodester	www.sourcecodester.com/
vuldb	www.vuldb.com/vuln/367522
vuldb	www.vuldb.com/vuln/367522/cti
vuldb	www.vuldb.com/cve/CVE-2026-10244
vuldb	www.vuldb.com/submit/823931
github	www.github.com/timeflies123/cve/issues/2

Parameter	Position	Path	Description	CWE
medicine_name	request body	/ShowForm/create_medicine_name/main	Cross-site scripting via manipulation of medicine_name parameter in create_medicine_name function.	CWE-94, CWE-79

17 Jun 2026 10:12Current

4.3Medium risk

Vulners AI Score4.3

CVSS 3.13.5

CVSS 24

CVSS 45.1

CVSS 33.5

EPSS0.00203

SSVC