First published: Fri Feb 23 2024(Updated: )
A vulnerability classified as problematic has been found in PHPGurukul Tourism Management System 1.0. Affected is an unknown function of the file user-bookings.php. The manipulation of the argument Full Name leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-254610 is the identifier assigned to this vulnerability.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Phpgurukul Tourism Management System | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-1822 is classified as a problematic vulnerability.
To fix CVE-2024-1822, sanitize user inputs in the user-bookings.php file to prevent cross-site scripting.
CVE-2024-1822 affects PHPGurukul Tourism Management System version 1.0.
CVE-2024-1822 allows for cross-site scripting via manipulation of the Full Name argument in the user-bookings.php file.
Yes, CVE-2024-1822 can be exploited remotely.