Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
Simple Laundry System 1.0: Remote Code Injection via Malicious Input
CVE-2026-5539
Summary
The Simple Laundry System 1.0 software has a security flaw that allows an attacker to inject malicious code into the system via a user input field. This could potentially allow an attacker to take control of the system or steal sensitive information. Users are advised to update to a patched version or consider replacing the software.
Original title
A flaw has been found in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /modifymember.php of the component Parameter Handler. This manipulation of the argument fi...
Original description
A flaw has been found in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /modifymember.php of the component Parameter Handler. This manipulation of the argument firstName causes cross site scripting. The attack can be initiated remotely. The exploit has been published and may be used.
nvd CVSS2.0
5.0
nvd CVSS3.1
4.3
nvd CVSS4.0
5.3
Vulnerability type
CWE-79
Cross-site Scripting (XSS)
CWE-94
Code Injection
Published: 5 Apr 2026 · Updated: 5 Apr 2026 · First seen: 5 Apr 2026