header-logo
Suggest Exploit
vendor:
Hotel And Lodge Management System
by:
Jitendra Kumar Tripathi
8.8
CVSS
HIGH
Stored Cross-Site Scripting (XSS)
79
CWE
Product Name: Hotel And Lodge Management System
Affected Version From: 1
Affected Version To: 1
Patch Exists: NO
Related CWE: N/A
CPE: a:sourcecodester:hotel_and_lodge_management_system:1.0
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: Windows 10 + Xampp 8.0.3
2020

Hotel And Lodge Management System 1.0 – ‘Customer Details’ Stored XSS

A stored XSS vulnerability exists in Hotel And Lodge Management System 1.0, which allows an attacker to inject malicious JavaScript code into the 'Customer Name' parameter of the 'Customer Details' page. This code is then stored in the database and executed when a user views the customer details page, allowing the attacker to steal the user's cookie.

Mitigation:

Input validation should be used to prevent malicious code from being stored in the database. Additionally, the application should use a secure cookie to store authentication information.
Source

Exploit-DB raw data:

# Exploit Title: Hotel And Lodge Management System 1.0 - 'Customer Details' Stored XSS
# Exploit Author: Jitendra Kumar Tripathi
# Vendor Homepage: https://www.sourcecodester.com/php/13707/hotel-and-lodge-management-system.html
# Software Link: https://www.sourcecodester.com/download-code?nid=13707&title=Hotel+and+Lodge+Management+System+using+PHP+with+Source+Code
# Version: 1
# Tested on Windows 10 + Xampp 8.0.3

XSS IMPACT:
1: Steal the cookie
2: User redirection to a malicious website

Vulnerable Parameters: Customer Details

*Steps to reproduce:*
1: Log in with a valid username and password. Navigate to the Customer Details (http://localhost/hotel/source%20code/index.php) on the left-hand side.
2: Add the new customer and then add the payload <script>alert(document.cookie)</script>in Customer Name parameter and click on save button. Post Saved successfully.
3: Now, XSS will get stored and trigger every time when you click view customer and the attacker can steal authenticated users' cookies.

Navigation

Suggest Exploit

Services By CQR