Sorcha-L

**Name of the Vulnerable Software and Affected Versions** SourceCodester Employee Management System version 1.0 **Description** A vulnerability was found in the SourceCodester Employee Management System, affecting an unknown part of the file employee.php. The manipulation of the `Full Name` argument leads to cross-site scripting. It is possible to initiate the attack remotely. Other parameters might be affected as well. **Recommendations** For version 1.0, consider disabling the `Full Name` argument in the employee.php file until a patch is available. Restrict access to the employee.php file to minimize the risk of exploitation. Avoid using the `Full Name` parameter in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.