| Título | PHPGurukul Taxi Stand Management System 1.0 Cross Site Scripting |
|---|
| Descripción | A Reflected Cross-Site Scripting (XSS) vulnerability exists in the searchdata cookie parameter of the Taxi Stand Management System.
An attacker can inject malicious JavaScript into the searchdata , which is reflected unsanitized in the page (/search.php).
The script executes immediately when a victim opens the page, leading to code execution in the user's browser context. |
|---|
| Fuente | ⚠️ https://github.com/LagonGit/ReportCVE/issues/9 |
|---|
| Usuario | Longlagon (UID 88119) |
|---|
| Sumisión | 2025-07-20 06:39 (hace 11 meses) |
|---|
| Moderación | 2025-07-21 09:40 (1 day later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 317085 [PHPGurukul Taxi Stand Management System 1.0 /search.php searchdata secuencias de comandos en sitios cruzados] |
|---|
| Puntos | 20 |
|---|