Simple Online Mens Salon Management System Cross-Site Scripting Vulnerability

Simple Online Mens Salon Management System is open source a men’s salon management system . Simple Online Mens Salon Management System v1.0 version of a cross-site scripting vulnerability , the vulnerability stems from the file /admin/?page=user/list parameter First Name/Last Name/Username on the user-supplied data lack of effective filtering and escaping , an attacker can exploit this vulnerability by injecting a carefully crafted payload to execute arbitrary Web script or HTML. An attacker can exploit this vulnerability to execute arbitrary Web script or HTML by injecting a crafted payload.