CVE-2023-25439 Information

Description

Stored Cross Site Scripting (XSS) vulnerability in Square Pig FusionInvoice 2023-1.0 allows attackers to execute arbitrary code via the description or content fields to the expenses tasks and customer details.

Reference

https://packetstormsecurity.com/files/172556/FusionInvoice-2023-1.0-Cross-Site-Scripting.html