CVE-2026-10295

LOW SEVERITY

CVSS Score & Metrics

Base Score

3.3 / 10

Vector String

                                        CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L                                    

Vulnerability Description

A vulnerability was found in SourceCodester Customer Review App 1.0. Affected by this vulnerability is the function add_review/save_review/get_all_reviews of the file review_app.py. Performing a manipulation of the argument name/comment results in denial of service. The attack requires a local approach. The exploit has been made public and could be used.

Vulnerability Details

Published Date

June 01, 2026

Last Modified

June 01, 2026

CWE ID

CWE-404

Source

NVD

Vendor

SourceCodester

Product

Customer Review App

External References

https://pastebin.com/Ud5vaGp6
https://vuldb.com/cve/CVE-2026-10295
https://vuldb.com/submit/826530
https://vuldb.com/vuln/367588
https://vuldb.com/vuln/367588/cti
https://www.sourcecodester.com/

CVE-2026-10295

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment