CVE-2026-10246
Severity CVSS v4.0:
LOW
Type:
CWE-79
Cross-Site Scripting (XSS)
Publication date:
01/06/2026
Last modified:
01/06/2026
Description
A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects the function create_medicine_presentation of the file /ShowForm/create_medicine_presentation/main. The manipulation of the argument medicine_presentation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Impact
Base Score 4.0
2.00
Severity 4.0
LOW
Base Score 3.x
3.50
Severity 3.x
LOW
Base Score 2.0
4.00
Severity 2.0
MEDIUM



