CVE-2023-4555

Name of the Vulnerable Software and Affected Versions SourceCodester Inventory Management System version 1.0

Description A vulnerability has been found in the SourceCodester Inventory Management System, affecting an unknown functionality of the file suppliar data.php. The manipulation of the name/company argument leads to cross-site scripting. The attack can be launched remotely.

Recommendations For version 1.0, consider disabling the functionality related to the name/company argument in the suppliar data.php file until a patch is available. Restrict access to the suppliar data.php file to minimize the risk of exploitation. Avoid using the name/company argument in the affected functionality until the issue is resolved.