A vulnerability, which was classified as problematic , has been found in SourceCodester Inventory System 1.0 . Affected by this issue is some unknown functionality of the file header.php . This manipulation causes cross site scripting. The identification of this vulnerability is CVE-2026-11520 . It is possible to initiate the attack remotely. Furthermore, there is an exploit available. Multiple parameters might be affected.