CVE-2023-37150

Name of the Vulnerable Software and Affected Versions Sourcecodester Online Pizza Ordering System version 1.0

Description The issue is related to a Cross-site scripting (XSS) vulnerability. This vulnerability is located in the "/admin/index.php?page=categories" endpoint, specifically in the Category item.

Recommendations For Sourcecodester Online Pizza Ordering System version 1.0, consider restricting access to the "/admin/index.php?page=categories" endpoint until a fix is available. As a temporary workaround, avoid using the Category item in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.