Cross Site Scripting Vulnerability in Online Bike Rental by Code-Projects
CVE-2025-0339
5.3MEDIUM
What is CVE-2025-0339?
A cross site scripting vulnerability exists in the Online Bike Rental version 1.0 application. This issue is due to an insecure implementation in the HTTP GET Request Handler, specifically within the '/vehical-details.php' file. Attackers can exploit this vulnerability remotely to inject malicious scripts, potentially compromising user data and leading to unauthorized actions. Proper validation and sanitization of inputs are crucial to mitigate this risk.
Affected Version(s)
Online Bike Rental 1.0