Online Fire Reporting System v1.0 has XSS injection vulnerability
Login account: admin/admin123
vendor : https://www.sourcecodester.com/php/15346/online-fire-reporting-system-phpoop-free-source-code.html
Vulnerability file: /ofrs/report.php
Vulnerability location: /index.php/?p=report
[+]Payload:
When the report sent by the user is mixed with malicious code, as follows
At this time, when the administrator checks the daily report, he will receive XSS attack


