A vulnerability classified as problematic has been found in itsourcecode University Management System 1.0 . Impacted is an unknown function of the file /admin_single_student_update.php . This manipulation of the argument st_name causes cross site scripting. This vulnerability appears as CVE-2026-4474 . The attack may be initiated remotely. In addition, an exploit is available.