PHP Invoice Home.PHP Cross-Site Scripting Vulnerability

PHP Invoice Home.PHP Cross-Site Scripting Vulnerability

An attacker may exploit this issue by enticing a victim user into following a malicious link.

The following proof-of-concept URI is available:

http://www.example.com/[path]/home.php?msg=Successfully%20updated&alert=[xss]