A persistent cross-site scripting vulnerability in Sourcecodester Stock Management System v1.0 allows remote attackers to inject arbitrary web script or HTML via the 'Brand Name.'Referenceshttps://www.sourcecodester.com/php/14366/stock-management-system-php.htmlhttps://cxsecurity.com/issue/WLB-2020090024