PHPGurukul Curfew e-Pass Management System Cross-Site Scripting Vulnerability in Admin Profile Management

A stored cross-site scripting vulnerability has been identified in PHPGurukul's Curfew e-Pass Management System version 1.0. The issue resides in the 'admin-profile.php' file, where user input from the 'adminname' and 'email' parameters is not properly sanitized before being saved to the database. This lack of proper output encoding allows for the injection of malicious JavaScript, which is executed in the browsers of users who view the affected profile. Exploitation of this vulnerability could lead to session hijacking, unauthorized actions on behalf of the user, and theft of sensitive information.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user viewing the profile. This could result in session hijacking, unauthorized administrative actions, and theft of sensitive data.

Reproduction

To reproduce this vulnerability, log in as an administrator and navigate to the 'Admin Profile' page. In the 'Admin Name' input field, enter a script payload, such as a JavaScript alert script. After submitting the form, the injected script will execute when the profile page is viewed.

Remediation

It is recommended to implement proper output encoding for user-supplied data before rendering it on the page. Additionally, input validation and sanitization should be applied to all user data before it is stored in the database.