Cross Site Scripting Vulnerability in SourceCodester Leave Application System
CVE-2026-5209

4.8MEDIUM

Key Information:

Vendor: Sourcecodester
Status: Leave Application System
Vendor: CVE Published:; 31 March 2026

🔔 Create Sourcecodester Vulnerability Alert

What is CVE-2026-5209?

A security flaw has been found in SourceCodester Leave Application System 1.0, specifically within the User Management Handler component. This vulnerability enables attackers to execute cross site scripting (XSS) attacks, which can potentially be exploited remotely. The vulnerability has been publicly disclosed, increasing the risk for users as malicious entities may leverage this weakness for harmful purposes.