CVE-2022-36254

Published
View on NVD ↗
CVSS v3
5.4
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT

Description

Multiple persistent cross-site scripting (XSS) vulnerabilities in index.php in tramyardg Hotel Management System 1.0 allow remote attackers to inject arbitrary web script or HTML via multiple parameters such as "fullname".

tramyardg/hotel-mgmt-system
tramyardg/hotel-mgmt-system
Hotel booking system for customers added with an admin feature to manage reservations.
GitHubGitHub
309