Cross-Site Scripting (XSS) Vulnerability in Sourcecodester Online Covid-19 Directory on Vaccination System v1.0

Cross-Site Scripting (XSS) Vulnerability in Sourcecodester Online Covid-19 Directory on Vaccination System v1.0

CVE-2022-46096 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A Cross site scripting (XSS) vulnerability in Sourcecodester Online Covid-19 Directory on Vaccination System v1.0 allows attackers to execute arbitrary code via the txtfullname parameter or txtphone parameter to register.php without logging in.

Learn more about our Web Application Penetration Testing UK.