Soumettre #769578: SourceCodester Resort Reservation System 1 Cross Site Scriptinginformation

Titre	SourceCodester Resort Reservation System 1 Cross Site Scripting
Description	A stored cross-site scripting (XSS) vulnerability exists in the Reservation Management module of the SourceCodester Resort Reservation System (PHP + SQLite). The application fails to properly sanitize and encode user-supplied input in reservation fields such as Fullname and Remarks. Malicious JavaScript injected into these fields is stored in the database and executed when rendered in administrative pages, potentially leading to session hijacking and privilege escalation.
La source	⚠️ https://medium.com/@rvpipalwa/stored-cross-site-scripting-xss-in-reservation-management-sourcecodester-resort-reservation-894ee77d7312
Utilisateur	rvpipalwa (UID 93501)
Soumission	28/02/2026 11:14 (il y a 2 mois)
Modérer	08/03/2026 18:43 (8 days later)
Statut	Accepté
Entrée VulDB	349785 [SourceCodester Resort Reservation System 1.0 Reservation Management ?page=manage_reservation ID cross site scripting]
Points	20

Might our Artificial Intelligence support you?

Check our Alexa App!