Invia #592641: PHPGurukul Nipah virus (NiV) – Testing Management System V1.0 Cross Site Scriptinginformazioni

TitoloPHPGurukul Nipah virus (NiV) – Testing Management System V1.0 Cross Site Scripting
DescrizioneDuring the security assessment of "Nipah virus (NiV) – Testing Management System", I detected a critical Cross-Site Scripting vulnerability in the "/nipah-tms/search-report.php" file. This vulnerability is attributed to the insufficient sanitization and validation of user input for the "serachdata" parameter. This inadequacy enables attackers to inject malicious JavaScript payloads that execute within the context of the application domain. Consequently, attackers can compromise user accounts, steal sensitive information, and manipulate application functionality. Immediate corrective actions are essential to safeguard user security and maintain trust.
Fonte⚠️ https://github.com/kakalalaww/CVE/issues/14
Utente
 kakalalaww (UID 86294)
Sottomissione08/06/2025 11:16 (1 Anno fa)
Moderazione15/06/2025 12:36 (7 days later)
StatoAccettato
Voce VulDB312596 [PHPGurukul Nipah Virus Testing Management System 1.0 /search-report.php serachdata cross site scripting]
Punti20

PrecedenteVisione D'ensembleIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!