Submit #306960: PHPGurukul Emergency Ambulance Hiring Portal 1.0 Cross Site Scriptinginfo

TitlePHPGurukul Emergency Ambulance Hiring Portal 1.0 Cross Site Scripting
DescriptionBug Description: An unauthenticated reflected cross-site scripting (XSS) vulnerability in PHPGurukul Emergency Ambulance Hiring Portal 1.0 allows attackers to execute arbitrary web scripts via a crafted payload injected into the "searchdata" field. Steps to Reproduce: # Exploit Title: Reflected XSS in "searchdata" parameter of Emergency Ambulance Hiring Portal # Date: 28-03-2024 # Exploit Author: dhabaleshwardas # Vendor Homepage: https://phpgurukul.com/ # Software Link: https://phpgurukul.com/emergency-ambulance-hiring-portal-using-php-and-mysql/ # Version: 1.0 # Tested on: firefox/chrome/brave # CVE: To reproduce the attack: 1- Head to the http://localhost/eahp/ambulance-tracking.php endpoint . 2- Here you would be asked to give a value in the "searchdata" parameter. We simply put an XSS payload <script>alert(5)</script>. 3- As soon as you hit "Search" intercept the request and then check the response, you can see the payload directly embedded into the HTML content without proper sanitization or encoding, and hence, a pop-up is shown with the number "5". 4- Although Reflected XSS is not as critical as Stored XSS but still it can be used to steal user session cookies, allowing the attacker to impersonate the victim and perform actions on their behalf and can even redirect users to malicious websites. Remediation: 1- Validate and sanitize user input on the server side. Ensure that input adheres to expected patterns and formats. 2- Encode user input before displaying it in the HTML output. HTML-encode special characters to prevent them from being interpreted as HTML or JavaScript.
Source⚠️ https://github.com/dhabaleshwar/Open-Source-Vulnerabilities/blob/main/eahp_rxss.md
User
 dhabaleshwar (UID 58737)
Submission03/29/2024 12:01 (2 years ago)
Moderation03/29/2024 15:27 (3 hours later)
StatusAccepted
VulDB entry258679 [PHPGurukul Emergency Ambulance Hiring Portal 1.0 Ambulance Tracking Page ambulance-tracking.php searchdata cross site scripting]
Points20

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!