CVE-2026-3763
MEDIUMSimple Flight Ticket Booking System 1.0 - XSS
Title source: llmDescription
A vulnerability was found in code-projects Simple Flight Ticket Booking System 1.0. The affected element is an unknown function of the file showhistory.php. The manipulation results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used.
Scores
CVSS v3
4.3
EPSS
0.0003
EPSS Percentile
9.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Classification
CWE
CWE-94
CWE-79
Status
published
Affected Products (1)
carmelo/simple_flight_ticket_booking_system
Timeline
Published
Mar 08, 2026
Tracked Since
Mar 09, 2026