CVE-2021-29387
Sourcecodester Equipment Inventory System 1.0 is affected by multiple stored cross-site scripting (XSS) vulnerabilities. The issue allows remote attackers to inject arbitrary JavaScript via the Name Parameters in the Add sections (e.g., Add Item, Employee, Position). Root cause is stored XSS, ena...