Submit #769578: SourceCodester Resort Reservation System 1 Cross Site Scriptinginfo

TitelSourceCodester Resort Reservation System 1 Cross Site Scripting
BeschreibungA stored cross-site scripting (XSS) vulnerability exists in the Reservation Management module of the SourceCodester Resort Reservation System (PHP + SQLite). The application fails to properly sanitize and encode user-supplied input in reservation fields such as Fullname and Remarks. Malicious JavaScript injected into these fields is stored in the database and executed when rendered in administrative pages, potentially leading to session hijacking and privilege escalation.
Quelle⚠️ https://medium.com/@rvpipalwa/stored-cross-site-scripting-xss-in-reservation-management-sourcecodester-resort-reservation-894ee77d7312
Benutzer
 rvpipalwa (UID 93501)
Einreichung28.02.2026 11:14 (vor 1 Monat)
Moderieren08.03.2026 18:43 (8 days later)
StatusAkzeptiert
VulDB Eintrag349785 [SourceCodester Resort Reservation System 1.0 Reservation Management ?page=manage_reservation ID Cross Site Scripting]
Punkte20

ZurückÜbersichtWeiter

Want to stay up to date on a daily basis?

Enable the mail alert feature now!