Ecommerce-CodeIgniter-Bootstrap prior to 2020-08-03 allows XSS in application/modules/vendor/views/add_product.php.
ecommerce-codeigniter-bootstrap project ecommerce-codeigniter-bootstrap