{"uuid": "70d4dec7-7715-4165-ba29-74b0dbe33494", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-10112", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116662706158688987", "content": "\u26a0\ufe0f XSS vuln (MEDIUM, CVSS 4.8) in sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0 \u2014 CVE-2026-10112. 'Name' param on Dashboard Page unsanitized, allowing script injection. No patch yet \u2014 use input validation/output encoding. https://radar.offseq.com/threat/cve-2026-10112-cross-site-scripting-in-sambitraj-s-ee88cf56 #OffSeq #XSS #AppSec #Vulnerability", "creation_timestamp": "2026-05-30T09:00:26.725325Z"}