A vulnerability has been found in SourceCodester Best Courier Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file parcel_list.php of the component GET Parameter Handler. The manipulation of the argument id with the input
</TiTlE><ScRiPt>alert(1)</ScRiPt>
leads to cross site scripting.
This vulnerability is known as CVE-2023-6301. The attack can be launched remotely. Furthermore, there is an exploit available.