إرسال #592357: PHPGurukul Restaurant Table Booking System V1.0 Cross Site Scriptingالمعلومات

عنوانPHPGurukul Restaurant Table Booking System V1.0 Cross Site Scripting
الوصفDuring the security assessment of "Restaurant Table Booking System", I detected a critical Cross-Site Scripting vulnerability in the "/rtbs/check-status.php" file. This vulnerability is attributed to the insufficient sanitization and validation of user input for the "searchdata" parameter. This inadequacy enables attackers to inject malicious JavaScript payloads that execute within the context of the application domain. Consequently, attackers can compromise user accounts, steal sensitive information, and manipulate application functionality. Immediate corrective actions are essential to safeguard user security and maintain trust.
المصدر⚠️ https://github.com/kakalalaww/CVE/issues/8
المستخدم Jww0KA (UID 86269)
ارسال07/06/2025 08:54 AM (1 سنة منذ)
الاعتدال10/06/2025 01:40 PM (3 days later)
الحالةتمت الموافقة
إدخال VulDB311852 [PHPGurukul Restaurant Table Booking System 1.0 /check-status.php searchdata البرمجة عبر المواقع]
النقاط20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!