A vulnerability was found in yashpokharna2555 restaurent-management-system . It has been rated as problematic . This impacts an unknown function of the file login_register.php of the component Registration Handler . Performing a manipulation of the argument Username results in cross site scripting. This vulnerability was named CVE-2026-13499 . The attack may be initiated remotely. In addition, an exploit is available. This product uses a rolling release model to deliver continuous updates. As a