Submit #94913: Simple Responsive Tourism Website v1.0 /tourism/rate_review.php parameter id exists XSS vulnerabilityinfo

TitleSimple Responsive Tourism Website v1.0 /tourism/rate_review.php parameter id exists XSS vulnerability
DescriptionAn issue was discovered in Simple Responsive Tourism Website v1.0. There is a XSS vulnerability that it is possible to inject arbitrary JavaScript into the application's response via /tourism/rate_review.php?id. Payload1:id=1"><script>alert(1111)</script> Payload2:id=1"><script>alert(document.cookie)</script>
Source⚠️ https://github.com/verylazycat/bug_report/blob/main/vendors/oretnom23/Simple%20Responsive%20Tourism%20Website/XSS-1.md
User
 LiuYi (UID 41827)
Submission02/26/2023 10:40 (3 years ago)
Moderation02/26/2023 12:57 (2 hours later)
StatusAccepted
VulDB entry221799 [SourceCodester Simple Responsive Tourism Website 1.0 /tourism/rate_review.php ID cross site scripting]
Points19

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!