A Cross-site Scripting (XSS) vulnerability in manage_recipient.php of Sourcecodester Toll Tax Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "owner" input field.
https://www.sourcecodester.com/php/15304/toll-tax-management-system-phpoop-free-source-code.html