| Title | PHPGurukul Taxi Stand Management System 1.0 Cross Site Scripting |
|---|
| Description | A Reflected Cross-Site Scripting (XSS) vulnerability exists in the searchdata cookie parameter of the Taxi Stand Management System.
An attacker can inject malicious JavaScript into the searchdata cookie, which is reflected unsanitized in the page (/admin/search-autoortaxi.php).
The script executes immediately when a victim opens the page, leading to code execution in the user's browser context. |
|---|
| Source | ⚠️ https://github.com/LagonGit/ReportCVE/issues/8 |
|---|
| User | Longlagon (UID 88119) |
|---|
| Submission | 07/20/2025 06:23 AM (7 months ago) |
|---|
| Moderation | 07/21/2025 09:40 AM (1 day later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 317084 [PHPGurukul Taxi Stand Management System 1.0 search-autoortaxi.php searchdata cross site scripting] |
|---|
| Points | 20 |
|---|