| Title | MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 Reflected XSS |
|---|
| Description | The Online College Event Hall Reservation System exhibits a Reflected XSS vulnerability in its `/admin/bookdate.php` script, where the `id` parameter is not properly sanitized, allowing for the injection of arbitrary JavaScript code. This vulnerability highlights the importance of encoding or sanitizing user inputs to prevent malicious scripts from executing, thus maintaining the security of the application and its users. |
|---|
| Source | ⚠️ https://github.com/skid-nochizplz/skid-nochizplz/blob/main/TrashBin/CVE/MAGESH-K21%20%20Online-College-Event-Hall-Reservation-System/Reflected%20XSS%20-%20bookdate.php.md |
|---|
| User | nochizplz (UID 64302) |
|---|
| Submission | 03/06/2024 16:46 (2 years ago) |
|---|
| Moderation | 03/15/2024 17:29 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 256958 [MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 /admin/bookdate.php ID cross site scripting] |
|---|
| Points | 19 |
|---|