PHPGurukul Rail Pass Management System Cross-Site Scripting Vulnerability

A cross-site scripting (XSS) vulnerability has been identified in PHPGurukul Rail Pass Management System version 1.0. The issue resides in the file '/rpms/download-pass.php', where the 'searchdata' parameter is not properly sanitized, allowing attackers to inject malicious JavaScript. This vulnerability can be exploited remotely, without any authentication, by manipulating the 'searchdata' parameter to execute arbitrary JavaScript in the context of the user's browser.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where injected scripts are executed in the context of the user, potentially leading to session hijacking, cookie theft, and unauthorized actions on behalf of the user.

Reproduction

To reproduce this vulnerability, send a POST request to '/rpms/download-pass.php' with a payload in the 'searchdata' parameter that includes JavaScript, such as a script tag. The injected script will execute in the browser of anyone who views the page.

Remediation

It is recommended to implement proper input validation and output encoding, particularly for user-generated content. Additionally, consider using a Content Security Policy to mitigate the effects of XSS vulnerabilities.