PHPGurukul Rail Pass Management System Cross-Site Scripting Vulnerability

A cross-site scripting (XSS) vulnerability has been identified in PHPGurukul Rail Pass Management System version 1.0. The issue resides in the contact.php file, where the 'name' parameter is not properly sanitized, allowing attackers to inject malicious JavaScript. This vulnerability can be exploited remotely, without authentication, by sending a crafted payload that is executed in the context of the user's browser.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where injected scripts are executed in the context of the user, potentially leading to session hijacking, cookie theft, and unauthorized actions on behalf of the user.

Reproduction

To reproduce this vulnerability, send a POST request to '/rpms/contact.php' with a 'name' parameter containing a script tag, such as '<script>alert(document.cookie)</script>'. This payload will be executed as JavaScript when the injected contact information is viewed by an admin user.

Remediation

It is recommended to implement proper input validation and output encoding for user-generated content, particularly in HTML contexts. Additionally, consider using a Content Security Policy to mitigate the effects of XSS vulnerabilities.