vendor:
Matrimonial Script
by:
7.5
CVSS
HIGH
Cross-Site Scripting
79
CWE
Product Name: Matrimonial Script
Affected Version From: 2.0.3
Affected Version To:
Patch Exists: NO
Related CWE:
CPE: a:i-Net_Solution:Matrimonial_Script:2.0.3
Platforms Tested:
Cross-Site Scripting Vulnerability in i-Net Solution Matrimonial Script
The i-Net Solution Matrimonial Script is prone to a cross-site scripting vulnerability due to improper sanitization of user-supplied input. An attacker can exploit this vulnerability to execute arbitrary script code in the browser of a victim user, potentially leading to the theft of authentication credentials and other attacks.
Mitigation:
To mitigate this vulnerability, it is recommended to properly sanitize user-supplied input before using it in the application. Input validation and output encoding should be implemented.