Vulnerability CVE-2024-10155
Published: 2024-10-19

Description:
A vulnerability was found in PHPGurukul Boat Booking System 1.0. It has been classified as problematic. This affects an unknown part of the file book-boat.php?bid=1 of the component Book a Boat Page. The manipulation of the argument phone_number leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://vuldb.com/?id.280941
https://vuldb.com/?ctiid.280941
https://vuldb.com/?submit.425397
https://github.com/jadu101/CVE/blob/main/phpgurukul_boat_booking_system_book_boat_xss.md
https://phpgurukul.com/
Copyright 2024, cxsecurity.com

 

Back to Top