Key Information about Vulnerability Vulnerability ID: CVE-2023-3189 Vulnerability Type: Cross Site Scripting (XSS) Affected Software: SourceCodester Online School Fees System 1.0 Affected File and Component: /paysystem/branch.php, POST Parameter Handler Affected Parameter: branch Summary Vulnerability Status: Problematic Affected Element: An unknown function Vulnerability Description: Manipulating the argument results in XSS. Exploit Accessibility: Can be exploited remotely and an exploit exists. Details CWE Classification: CWE-79 Impact: Affects the integrity of the system due to improper neutralization or incorrect handling of user-controlled input. Release Date: 06/14/2023 Advisory Source: GitHub.com Technical Notes Exploit Source: GitHub.com Exploit Type: Proof-of-concept Vulnerable Target Search: Targets can be found using Google Hacking with the query Recommendations Countermeasures: No specific information on countermeasures. It is suggested to replace the affected software with an alternative product.