| عنوان | MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 Reflected XSS |
|---|
| الوصف | The Online College Event Hall Reservation System is affected by a Reflected Cross-Site Scripting (XSS) vulnerability in its /admin/rooms.php script. Attackers can exploit this by injecting arbitrary JavaScript via the id parameter, as demonstrated with an alert box. This highlights the need for input sanitization and encoding to protect against XSS threats. |
|---|
| المصدر | ⚠️ https://github.com/skid-nochizplz/skid-nochizplz/blob/main/TrashBin/CVE/MAGESH-K21%20%20Online-College-Event-Hall-Reservation-System/Reflected%20XSS%20-%20rooms.php.md |
|---|
| المستخدم | nochizplz (UID 64302) |
|---|
| ارسال | 06/03/2024 05:12 PM (2 سنوات منذ) |
|---|
| الاعتدال | 15/03/2024 05:29 PM (9 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 256963 [MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 /admin/rooms.php معرف البرمجة عبر المواقع] |
|---|
| النقاط | 18 |
|---|