Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
2.1
CVE-2026-10301: itsourcecode Fees Management System 1.0 allows Remote Code Execution
CVE-2026-10301
Summary
A security issue in itsourcecode Fees Management System 1.0 could allow an attacker to execute malicious code on your website. This could happen if a user visits a malicious website or clicks on a link that contains malicious code. You should update to a fixed version of the software to protect your site.
Original title
A vulnerability was detected in itsourcecode Fees Management System 1.0. The affected element is an unknown function of the file index.php. Performing a manipulation of the argument page results in...
Original description
A vulnerability was detected in itsourcecode Fees Management System 1.0. The affected element is an unknown function of the file index.php. Performing a manipulation of the argument page results in cross site scripting. The attack may be initiated remotely. The exploit is now public and may be used.
nvd CVSS2.0
5.0
nvd CVSS3.1
4.3
nvd CVSS4.0
2.1
Vulnerability type
CWE-79
Cross-site Scripting (XSS)
CWE-94
Code Injection
Published: 2 Jun 2026 · Updated: 2 Jun 2026 · First seen: 2 Jun 2026