A vulnerability was found in SourceCodester Inventory Management System 1.0 . It has been rated as problematic . Impacted is an unknown function of the file /api/users_handler.php of the component User Registration Endpoint . Performing a manipulation of the argument full_name results in cross site scripting. This vulnerability is reported as CVE-2026-13570 . The attack is possible to be carried out remotely. Moreover, an exploit is present.