Security Advisory
CVE-2026-9413
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
A vulnerability was identified in SourceCodester Indian Invoicing System 1.0. The affected element is an unknown function of the file /Invoicing/category.php. The manipulation of the argument msg leads to cross site scripting. The attack may be initiated remotely. The exploit is publicly available and might be used.