A vulnerability was found in BigProf Online Invoicing System 2.6 and classified as problematic. This issue affects some unknown processing of the file /invoicing/app/invoices_view.php. The manipulation of the argument FirstRecord leads to cross site scripting.
The identification of this vulnerability is CVE-2023-6427. The attack may be initiated remotely. There is no exploit available.