| Title | https://www.sourcecodester.com/sql/17287/prison-management-syste Prison Management System v1.0 Cross-Site Scripting |
|---|
| Description | Source Code: https://www.sourcecodester.com/sql/17287/prison-management-system.html
Summary:
A Cross-Site Scripting (XSS) vulnerability has been discovered in Prison Management System. The vulnerability exists due to improper sanitization of user-controlled input in the txtstart_date and txtend_date parameters. Attackers can exploit this vulnerability by injecting arbitrary JavaScript code into the application, leading to the execution of malicious scripts in the context of the victim's browser. This could result in various attacks such as session hijacking, phishing, or defacement of the application's interface. |
|---|
| Source | ⚠️ https://github.com/zyairelai/CVE-submissions/blob/main/prison-xss.md |
|---|
| User | zyairelai (ID 67401) |
|---|
| Submission | 2024年04月08日 08:05 (2 months ago) |
|---|
| Moderation | 2024年04月08日 09:05 (60 minutes later) |
|---|
| Status | Duplicate |
|---|
| VulDB Entry | 259696 |
|---|