A vulnerability labeled as problematic has been found in SourceCodester Pharmacy Sales and Inventory System 1.0 . This vulnerability affects the function create_generic_name of the file /ShowForm/create_generic_name/main . The manipulation of the argument generic_name results in cross site scripting. This vulnerability is cataloged as CVE-2026-10247 . The attack may be launched remotely. Furthermore, there is an exploit available.