2 matches found
CVE-2022-2291
The CVE-2022-2291 entry concerns SourceCodester Hotel Management System 2.0. The vulnerability exists in the Search component, specifically the /ci_hms/search parameter, where unsanitized input can be manipulated to trigger cross-site scripting (XSS). The reported vector involves input like >,...
CVE-2022-2291 SourceCodester Hotel Management System Search search cross site scripting
A vulnerability was found in SourceCodester Hotel Management System 2.0. It has been rated as problematic. This issue affects some unknown processing of the file /cihms/search of the component Search. The manipulation of the argument search with the input "alert"XSS" leads to cross site scripting...