CVE-2021-41434 Information

Description

A stored Cross-Site Scripting (XSS) vulnerability exists in version 1.0 of the Expense Management System application that allows for arbitrary execution of JavaScript commands through index.php.

Reference

https://egavilanmedia.com/Expense-Management-System/ https://github.com/martinkubecka/CVE-References/blob/main/CVE-2021-41434.md