PHPGurukul Apartment Visitors Management System Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in PHPGurukul Apartment Visitors Management System version 1.0. The issue arises in the file '/category.php', where the 'categoryname' parameter, submitted via a POST request, is not properly sanitized or encoded before being displayed. This flaw allows attackers to inject malicious scripts that execute in the browsers of users, including administrators, who view the affected page.

Impact

Exploitation of this vulnerability allows for the execution of arbitrary JavaScript in the context of the user's browser, potentially leading to the theft of cookies or session tokens, execution of cross-site request forgery attacks, privilege escalation if an admin views the injected content, and exfiltration of sensitive data or redirection to malicious websites.

Reproduction

To reproduce this vulnerability, send a POST request to '/avms/category.php' with a 'categoryname' parameter containing a script tag, such as '<script>alert(1)</script>'. This injected script will be executed when the injected content is viewed on the page.

Remediation

It is recommended to implement proper output encoding, input validation, and to apply a Content Security Policy. Additionally, using a sanitizer to clean user input before rendering it can help mitigate this vulnerability.