CVE-2023-29623

Purchase Order Management v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the password parameter at /purchase_order/classes/login.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt