Badminton Center Management System Project: Security Vulnerabilities
Badminton Center Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via /bcms/classes/Master.php?f=save_court_rental.
CVSS Score
5.4
EPSS Score
0.003
Published
2022-05-24
A vulnerability, which was classified as problematic, was found in Badminton Center Management System. This affects the userlist module at /bcms/admin/?page=user/list. The manipulation of the argument username with the input </td><img src="" onerror="alert(1)"><td>1 leads to an authenticated cross site scripting. Exploit details have been disclosed to the public.
CVSS Score
3.5
EPSS Score
0.002
Published
2022-05-23
Page 3