Sourcecodester · Web-Based Pharmacy Product Management System · CVE-2025-56018
**Name of the Vulnerable Software and Affected Versions**
SourceCodester Web-based Pharmacy Product Management System version 1.0
**Description**
The software is susceptible to Cross Site Scripting (XSS) within the Category Management feature, specifically through the category name field. This allows for potential malicious script injection.
**Recommendations**
Apply input validation and sanitization to the category name field to prevent the execution of malicious scripts.