Multiple Stored XSS Vulnerabilities in House Rental and Property Listing 1.0 Register Module

Multiple Stored XSS Vulnerabilities in House Rental and Property Listing 1.0 Register Module

CVE-2021-25790 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Multiple stored cross site scripting (XSS) vulnerabilities in the "Register" module of House Rental and Property Listing 1.0 allows authenticated attackers to execute arbitrary web scripts or HTML via crafted payloads in all text fields except for Phone Number and Alternate Phone Number.

Learn more about our Web App Pen Testing.