Sourcecodester · Sourcecodester Survey Application System · CVE-2023-1946
**Name of the Vulnerable Software and Affected Versions**
SourceCodester Survey Application System version 1.0
**Description**
A problematic issue was found in the Add New Handler component, affecting some unknown processing. The manipulation of the `Title` argument with the input `<script>prompt(document.domain)</script>` leads to cross-site scripting. The attack can be initiated remotely.
**Recommendations**
For version 1.0, consider restricting the input for the `Title` argument to prevent cross-site scripting attacks until a patch is available. As a temporary workaround, restrict access to the Add New Handler component to minimize the risk of exploitation.