Ccccyyyy

**Name of the Vulnerable Software and Affected Versions** Campcodes Online Shopping System version 1.0 **Description** A vulnerability was found in the file /offersmail.php, where the manipulation of the `email` argument leads to cross-site scripting. The attack can be initiated remotely. **Recommendations** For Campcodes Online Shopping System version 1.0, sanitize the `email` input field in the /offersmail.php file to prevent cross-site scripting attacks. Update the code to handle user input securely. Check with the vendor for available patches. As a temporary workaround, consider restricting access to the /offersmail.php file until a patch is available.