Vehicle Parking Tracker System 1.0 - 'Owner Name' Stored Cross-Site Scripting

vendor:

Vehicle Parking Tracker System

by:

Anmol K Sachan

CVSS

HIGH

Cross-site Scripting

CWE

Product Name: Vehicle Parking Tracker System

Affected Version From: 1.0

Affected Version To: 1.0

Patch Exists: N/A

Related CWE: N/A

CPE: a:phpgurukul:vehicle_parking_tracker_system

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Windows 10 XAMPP

2021

Vehicle Parking Tracker System 1.0 – ‘Owner Name’ Stored Cross-Site Scripting

This application is vulnerable to Stored XSS vulnerability. The vulnerable script is http://localhost/vpms/add-vehicle.php and the vulnerable parameter is 'Owner Name'. The payload used is ()"><script>alert(‘document.cookie’)</script> and the proof of concept is manage-incomingvehicle.php, where the Javascript code is executed.

Mitigation:

Input validation and output encoding should be used to prevent XSS attacks.

Source

Exploit-DB raw data:

# Exploit Title: Vehicle Parking Tracker System 1.0 - 'Owner Name'  Stored Cross-Site Scripting
# Date: 2021-01-30
# Exploit Author: Anmol K Sachan
# Vendor Homepage: https://phpgurukul.com/
# Software Link: https://phpgurukul.com/vehicle-parking-management-system-using-php-and-mysql/
# Software: : Vehicle Parking Tracker System 
# Version : 1.0
# Vulnerability Type: Cross-site Scripting
# Tested on Windows 10 XAMPP
# This application is vulnerable to Stored XSS vulnerability.
# Vulnerable script:

1) http://localhost/vpms/add-vehicle.php
# Vulnerable parameters: 'Owner Name'
# Payload used: ()"><script>alert(‘document.cookie’)</script>
# POC: manage-incomingvehicle.php
# You will see your Javascript code executed.