| Название | PHPGurukul Taxi Stand Management System 1.0 Cross Site Scripting |
|---|
| Описание | A Reflected Cross-Site Scripting (XSS) vulnerability exists in the searchdata cookie parameter of the Taxi Stand Management System.
An attacker can inject malicious JavaScript into the searchdata cookie, which is reflected unsanitized in the page (/admin/search-autoortaxi.php).
The script executes immediately when a victim opens the page, leading to code execution in the user's browser context. |
|---|
| Источник | ⚠️ https://github.com/LagonGit/ReportCVE/issues/8 |
|---|
| Пользователь | Longlagon (UID 88119) |
|---|
| Представление | 20.07.2025 06:23 (11 месяцы назад) |
|---|
| Модерация | 21.07.2025 09:40 (1 day later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 317084 [PHPGurukul Taxi Stand Management System 1.0 search-autoortaxi.php searchdata межсайтовый скриптинг] |
|---|
| Баллы | 20 |
|---|