POC

[Description] Cross Site Scripting vulnerability in Best Courier Management System v.1.000 allows a remote attacker to execute arbitrary code via a crafted payload to the page parameter in the URL.

---

[Vulnerability Type] Cross Site Scripting (XSS)

---

[Vendor of Product] https://www.sourcecodester.com/php/16848/best-courier-management-system-project-php.html

---

[Affected Product Code Base] v 1.000 - Best courier management system

---

[Affected Component] All URL's

---

[Attack Type] Remote

---

[Impact Code execution] true

---

[Attack Vectors] exploitation possible via link (Remote)

---

[Reference] https://youtu.be/5oVfJHT_-Ys

---

[Discoverer] Yagyesh K. Tiwari