CVE-2026-10301 PUBLISHED

A vulnerability was detected in itsourcecode Fees Management System 1.0. The affected element is an unknown function of the file index.php. Performing a manipulation of the argument page results in cross site scripting. The attack may be initiated remotely. The exploit is now public and may be used.

• OOliveira (VulDB User) reporter

• VDB-367594 | itsourcecode Fees Management System index.php cross site scripting
• VDB-367594 | CTI Indicators (IOB, IOC, TTP, IOA)
• CVE-2026-10301 | CVE Analysis and Report
• Submit #828140 | itsourcecode Fees Management System V1.0 Cross Site Scripting
• https://github.com/ltranquility/vuln_submit/issues/9
• https://itsourcecode.com/

• Cross Site Scripting CWE
• Code Injection CWE