CVE-2023-23026

Name of the Vulnerable Software and Affected Versions sourcecodester oretnom23 sales management system version 1.0

Description The issue allows attackers to execute arbitrary code via the product name and product price inputs in the file print.php, specifically through a cross-site scripting (XSS) vulnerability.

Recommendations For sourcecodester oretnom23 sales management system version 1.0, consider disabling the product name and product price inputs in the print.php file until a patch is available. Restrict access to the print.php file to minimize the risk of exploitation. Avoid using the product name and product price inputs in the affected file until the issue is resolved.