CVE-2023-36337

Name of the Vulnerable Software and Affected Versions PHP Inventory Management System version 1

Description A reflected cross-site scripting (XSS) issue exists in the /index.php/cuzh4 component. This allows attackers to execute arbitrary web scripts or HTML through a crafted payload. The component is vulnerable to the injection of malicious code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.