| عنوان | PHPGurukul Taxi Stand Management System 1.0 Cross Site Scripting |
|---|
| الوصف | A Reflected Cross-Site Scripting (XSS) vulnerability exists in the searchdata cookie parameter of the Taxi Stand Management System.
An attacker can inject malicious JavaScript into the searchdata cookie, which is reflected unsanitized in the page (/admin/search-autoortaxi.php).
The script executes immediately when a victim opens the page, leading to code execution in the user's browser context. |
|---|
| المصدر | ⚠️ https://github.com/LagonGit/ReportCVE/issues/8 |
|---|
| المستخدم | Longlagon (UID 88119) |
|---|
| ارسال | 20/07/2025 06:23 AM (8 أشهر منذ) |
|---|
| الاعتدال | 21/07/2025 09:40 AM (1 day later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 317084 [PHPGurukul Taxi Stand Management System 1.0 search-autoortaxi.php searchdata البرمجة عبر المواقع] |
|---|
| النقاط | 20 |
|---|