CVE-2026-13499

🗓️ 28 Jun 2026 13:15:08Reported by VulDBType

CVE-2026-13499 enables remote cross site scripting in yashpokharna2555 restaurant system via username in login_register.php.

Reporter	Title	Published	Views	Family All 4
ATTACKERKB	CVE-2026-13499	28 Jun 202613:15	–	attackerkb
Cvelist	CVE-2026-13499 yashpokharna2555 restaurent-management-system Registration login_register.php cross site scripting	28 Jun 202613:15	–	cvelist
EUVD	EUVD-2026-39997	28 Jun 202613:15	–	euvd
NVD	CVE-2026-13499	28 Jun 202614:16	–	nvd

[
  {
    "vendor": "yashpokharna2555",
    "product": "restaurent-management-system",
    "versions": [
      {
        "version": "5f3eca87cb681366866a78038af17891c4c86612",
        "status": "affected"
      },
      {
        "version": "6d1cc94c9007e2373d30d9c940824a5d2f50d9b6",
        "status": "affected"
      },
      {
        "version": "b7124069da225d5be3f430eb4d8e23d294f7a14f",
        "status": "affected"
      }
    ],
    "cpes": [
      "cpe:2.3:a:yashpokharna2555:restaurent-management-system:*:*:*:*:*:*:*:*"
    ],
    "modules": [
      "Registration Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/cve/CVE-2026-13499
github	www.github.com/yashpokharna2555/restaurent-management-system/issues/4
github	www.github.com/yashpokharna2555/restaurent-management-system/
vuldb	www.vuldb.com/submit/838560
vuldb	www.vuldb.com/vuln/374494/cti
vuldb	www.vuldb.com/vuln/374494

28 Jun 2026 14:16Current

4.4Medium risk

Vulners AI Score4.4

CVSS 3.14.3

CVSS 25

CVSS 45.3

CVSS 34.3