| Title | MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 Reflected XSS |
|---|
| Description | The Online College Event Hall Reservation System demonstrates a Reflected Cross-Site Scripting (XSS) vulnerability in its /admin/booktime.php page, enabling attackers to inject and execute arbitrary JavaScript through the id parameter. This vulnerability underscores the essential need for thorough input sanitization and encoding to prevent the execution of malicious scripts, thereby protecting users from potential XSS attacks. |
|---|
| Source | ⚠️ https://github.com/skid-nochizplz/skid-nochizplz/blob/main/TrashBin/CVE/MAGESH-K21%20%20Online-College-Event-Hall-Reservation-System/Reflected%20XSS%20-%20booktime.php.md |
|---|
| User | nochizplz (UID 64302) |
|---|
| Submission | 03/06/2024 16:55 (2 years ago) |
|---|
| Moderation | 03/15/2024 17:29 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 256960 [MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 /admin/booktime.php ID cross site scripting] |
|---|
| Points | 19 |
|---|