CVE-2023-39714
In Free and Open Source Inventory Management System v1.0, there are multiple XSS vulnerabilities that allow attackers to execute arbitrary web scripts/HTML by injecting payloads into the Name, Address, and Company fields in the Add New Member form. The documents confirm client-side script executi...