Cross site scripting

2023-07-1017:15:00

PRIOn knowledge base

www.prio-n.com

cross site scripting

hostel management

arbitrary code execution

crafted payload

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.2%

JSON

Cross Site Scripting vulnerability in Hostel Management System v2.1 allows an attacker to execute arbitrary code via a crafted payload to the Guardian name, Guardian relation, complimentary address, city, permanent address, and city parameters in the Book Hostel & Room Details page.

CPENameOperatorVersion
hostel_management_systemeq2.1

CPE	Name	Operator	Version
	hostel_management_system	eq	2.1

References

medium.com/%40ridheshgohil1092/cve-2023-36375-xss-on-hostel-management-system-d654e6df26bc

packetstormsecurity.com