提出 #592357: PHPGurukul Restaurant Table Booking System V1.0 Cross Site Scripting情報

タイトルPHPGurukul Restaurant Table Booking System V1.0 Cross Site Scripting
説明During the security assessment of "Restaurant Table Booking System", I detected a critical Cross-Site Scripting vulnerability in the "/rtbs/check-status.php" file. This vulnerability is attributed to the insufficient sanitization and validation of user input for the "searchdata" parameter. This inadequacy enables attackers to inject malicious JavaScript payloads that execute within the context of the application domain. Consequently, attackers can compromise user accounts, steal sensitive information, and manipulate application functionality. Immediate corrective actions are essential to safeguard user security and maintain trust.
ソース⚠️ https://github.com/kakalalaww/CVE/issues/8
ユーザー Jww0KA (UID 86269)
送信2025年06月07日 08:54 (1 年 ago)
モデレーション2025年06月10日 13:40 (3 days later)
ステータス承諾済み
VulDBエントリ311852 [PHPGurukul Restaurant Table Booking System 1.0 /check-status.php searchdata クロスサイトスクリプティング]
ポイント20

Might our Artificial Intelligence support you?

Check our Alexa App!