| 제목 | MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 Reflected XSS |
|---|
| 설명 | The Online College Event Hall Reservation System is affected by a Reflected Cross-Site Scripting (XSS) vulnerability in its /admin/rooms.php script. Attackers can exploit this by injecting arbitrary JavaScript via the id parameter, as demonstrated with an alert box. This highlights the need for input sanitization and encoding to protect against XSS threats. |
|---|
| 원천 | ⚠️ https://github.com/skid-nochizplz/skid-nochizplz/blob/main/TrashBin/CVE/MAGESH-K21%20%20Online-College-Event-Hall-Reservation-System/Reflected%20XSS%20-%20rooms.php.md |
|---|
| 사용자 | nochizplz (UID 64302) |
|---|
| 제출 | 2024. 03. 06. PM 05:12 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 03. 15. PM 05:29 (9 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 256963 [MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 /admin/rooms.php 아이디 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 18 |
|---|