PHPGurukul Online Banquet Booking System Cross-Site Scripting Vulnerability

A reflected cross-site scripting (XSS) vulnerability has been identified in PHPGurukul Online Banquet Booking System version 1.0. The issue resides in the admin/login.php file, specifically within the user_login and userpassword cookie parameters. This vulnerability allows attackers to inject malicious JavaScript, which is then executed in the context of the user's browser when the login page is accessed.

Impact

Exploitation of this vulnerability allows for the execution of arbitrary JavaScript in the victim's browser, potentially leading to session token theft, data exfiltration, redirection to malicious websites, phishing attacks, or bypassing client-side security measures.

Reproduction

To reproduce this vulnerability, inject a script payload into the user_login or userpassword cookie. When the admin/login.php page is loaded, the injected script will execute immediately, demonstrating the cross-site scripting flaw.

Remediation

It is recommended to sanitize cookie values before reflecting them in HTML output. Utilizing functions like htmlspecialchars() for proper output encoding of user-controlled data can mitigate this vulnerability. Additionally, applying a Content Security Policy (CSP) to restrict script execution and avoiding the reflection of cookie values in the frontend unless necessary can enhance security.