PHPGurukul Dairy Farm Shop Management System 1.0 Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) Vulnerability

Summary

PHPGurukul Dairy Farm Shop Management System 1.0 suffers from improper neutralization of input during web page generation (‘Cross-site Scripting’) vulnerability

Credit:

The information has been provided by Vendor

The original article can be found at:https://cinzinga.github.io/CVE-2020-5307-5308/


Details

PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to XSS, as demonstrated by the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName parameter in add-product.php.

 

Vulnerable Systems:

PHPGurukul Dairy Farm Shop Management System 1.0

 

CVE Information:

CVE-2020-5308

 

Disclosure Timeline:
Published Date:1/9/2020

Categories: News