A vulnerability was found in code-projects QR Code Generator 1.0. It has been classified as problematic. This affects an unknown part of the file /download.php?file=author.png. The manipulation of the argument file with the input "><iMg src=N onerror=alert(document.domain)> leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2023-7149. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.