3 matches found
CVE-2024-42771
A Stored Cross Site Scripting XSS vulnerability was found in " /admin/editroomcontroller.php" of the Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary code via "roomname" parameter...
Kashipara Hotel Management System 安全漏洞
Kashipara Hotel Management System is a hotel management system from Kashipara. A cross-site scripting vulnerability exists in Kashipara Hotel Management System v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the roomname parameter of...
CVE-2024-42771
CVE-2024-42771 affects Kashipara Hotel Management System v1.0, specifically the /admin/edit_room_controller.php endpoint. The vulnerability is Stored XSS via the room_name parameter, allowing remote attackers to inject and execute arbitrary scripts in the context of the affected web application. ...