Cross Site Scripting Vulnerability in Aplaya Beach Resort Online Reservation System 1.0
CVE-2024-3357

5.4MEDIUM

Key Information:

Vendor: SourceCodester
Status: Aplaya Beach Resort Online Reservation System
Vendor: CVE Published:; 5 April 2024

Summary

A vulnerability classified as problematic has been found in SourceCodester Aplaya Beach Resort Online Reservation System 1.0. This affects an unknown part of the file admin/mod_reports/index.php. The manipulation of the argument end leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-259461 was assigned to this vulnerability.

References

https://vuldb.com/?id.259461

https://vuldb.com/?ctiid.259461

https://vuldb.com/?submit.310226

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Apr 5, 2024