| Título | PHPGurukul Taxi Stand Management System 1.0 Cross Site Scripting |
|---|
| Descripción | A Reflected Cross-Site Scripting (XSS) vulnerability exists in the searchdata cookie parameter of the Taxi Stand Management System.
An attacker can inject malicious JavaScript into the searchdata cookie, which is reflected unsanitized in the page (/admin/search-autoortaxi.php).
The script executes immediately when a victim opens the page, leading to code execution in the user's browser context. |
|---|
| Fuente | ⚠️ https://github.com/LagonGit/ReportCVE/issues/8 |
|---|
| Usuario | Longlagon (UID 88119) |
|---|
| Sumisión | 2025-07-20 06:23 (hace 11 meses) |
|---|
| Moderación | 2025-07-21 09:40 (1 day later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 317084 [PHPGurukul Taxi Stand Management System 1.0 search-autoortaxi.php searchdata secuencias de comandos en sitios cruzados] |
|---|
| Puntos | 20 |
|---|