CVE-2024-7225

SourceCodester Insurance Management System 1.0 contains a cross-site scripting (XSS) vulnerability in the Edit Insurance Policy Page, specifically via the pname parameter of /Script/admin/core/update_policy. The issue is exploitable remotely and is triggered by input handling on that page; multip...