md# uasoft-indonesia--badaso
Detection and Exploitation:
- Login to the dashboard
- Go to Racks and click on the action button => add a new member or edit a member
- Inject payload : "' test <img src="" onerror="alert()"> to Name of member parameter and submit it.
- Go to Borrowing and add a new Borrowing or edit Borrowing then malicious is execute