What is CVE-2023-36375?

CVE-2023-36375 is a Cross Site Scripting vulnerability in Hostel Management System v2.1 that allows an attacker to execute arbitrary code.

How does the vulnerability in Hostel Management System v2.1 work?

The vulnerability in Hostel Management System v2.1 allows an attacker to execute arbitrary code by providing a crafted payload to certain parameters in the Book Hostel & Room Details page.

What is the severity of CVE-2023-36375?

CVE-2023-36375 has a severity rating of medium with a score of 5.4.

Vulnerability/
CVE-2023-36375

medium

5.4

CWE

10/7/2023

22/12/2023

CVE-2023-36375: XSS

First published: Mon Jul 10 2023(Updated: )

Cross Site Scripting vulnerability in Hostel Management System v2.1 allows an attacker to execute arbitrary code via a crafted payload to the Guardian name, Guardian relation, complimentary address, city, permanent address, and city parameters in the Book Hostel & Room Details page.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Hostel Management System Project Hostel Management System	=2.1
PHPGurukul Hostel Management System	=2.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2023-36375?
CVE-2023-36375 is a Cross Site Scripting vulnerability in Hostel Management System v2.1 that allows an attacker to execute arbitrary code.
How does the vulnerability in Hostel Management System v2.1 work?
The vulnerability in Hostel Management System v2.1 allows an attacker to execute arbitrary code by providing a crafted payload to certain parameters in the Book Hostel & Room Details page.
Which parameters are affected by the Cross Site Scripting vulnerability in Hostel Management System v2.1?
The Guardian name, Guardian relation, complimentary address, city, permanent address, and city parameters in the Book Hostel & Room Details page are affected by the Cross Site Scripting vulnerability in Hostel Management System v2.1.
What is the severity of CVE-2023-36375?
CVE-2023-36375 has a severity rating of medium with a score of 5.4.
How can I fix the Cross Site Scripting vulnerability in Hostel Management System v2.1?
To fix the Cross Site Scripting vulnerability in Hostel Management System v2.1, it is recommended to apply the latest security patches or updates provided by the software vendor.

collector/nvd-latest
collector/nvd-index
agent/severity
agent/references
agent/author
agent/description
agent/weakness
agent/type
agent/event
agent/first-publish-date
agent/last-modified-date
agent/softwarecombine
agent/tags
collector/nvd-api
agent/software-canonical-lookup-request
vendor/hostel management system project
canonical/hostel management system project hostel management system
version/hostel management system project hostel management system/2.1
vendor/phpgurukul
canonical/phpgurukul hostel management system
version/phpgurukul hostel management system/2.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.