Online Payroll System is a system for distributing payroll online. A cross-site scripting vulnerability exists in Online Payroll System. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data in /admin/employee_edit.php, which can be exploited to execute arbitrary web scripts or HTML by injecting a carefully crafted payload.