Submeter #592357: PHPGurukul Restaurant Table Booking System V1.0 Cross Site Scriptinginformação

TítuloPHPGurukul Restaurant Table Booking System V1.0 Cross Site Scripting
DescriçãoDuring the security assessment of "Restaurant Table Booking System", I detected a critical Cross-Site Scripting vulnerability in the "/rtbs/check-status.php" file. This vulnerability is attributed to the insufficient sanitization and validation of user input for the "searchdata" parameter. This inadequacy enables attackers to inject malicious JavaScript payloads that execute within the context of the application domain. Consequently, attackers can compromise user accounts, steal sensitive information, and manipulate application functionality. Immediate corrective actions are essential to safeguard user security and maintain trust.
Fonte⚠️ https://github.com/kakalalaww/CVE/issues/8
Utilizador Jww0KA (UID 86269)
Submissão07/06/2025 08h54 (há 1 Ano)
Moderação10/06/2025 13h40 (3 days later)
EstadoAceite
Entrada VulDB311852 [PHPGurukul Restaurant Table Booking System 1.0 /check-status.php searchdata Script de Site Cruzado]
Pontos20

Do you want to use VulDB in your project?

Use the official API to access entries easily!