CVE-2026-38940 PUBLISHED

Assigner: mitre
Reserved: 06.04.2026 Published: 30.04.2026 Updated: 30.04.2026

Cross Site Scripting vulnerability in RafyMrX TOKO-ONLINE-ROTI v.1.0 allows a remote attacker to execute arbitrary code via the detail_produk.php component

Product Status

Vendor	n/a
Product	n/a
Versions	Version n/a is affected

References

https://gist.github.com/spico8/3b8b64a58069fc189ca28563dd1249e8

Problem Types

n/a text