SourceCodester Simple Responsive Tourism Website Cross-Site Scripting Vulnerability

A cross-site scripting (XSS) vulnerability has been identified in SourceCodester Simple Responsive Tourism Website version 1.0. The issue resides in the registration functionality of the file '/tourism/classes/Master.php?f=register'. This vulnerability is caused by improper handling of user input in the 'firstname', 'lastname', and 'username' parameters, allowing remote attackers to inject malicious JavaScript that is executed in the context of the user's browser session. The application fails to adequately validate, filter, or encode user-supplied data before reflecting it back in the HTTP response. Exploitation of this vulnerability could lead to session hijacking, theft of sensitive information such as cookies or session tokens, defacement of the website, or redirection to malicious sites.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where injected scripts are executed in the context of the user's browser, potentially leading to session hijacking, theft of cookies or session tokens, website defacement, or redirection to malicious sites.

Reproduction

To reproduce this vulnerability, send a POST request to '/tourism/classes/Master.php?f=register' with injected script tags in the 'firstname', 'lastname', and 'username' fields. The injected script will be executed in the browser, demonstrating the cross-site scripting vulnerability.

Remediation

It is recommended to implement proper input validation and output encoding to neutralize user-supplied data before it is reflected in the HTTP response. Additionally, consider using a Content Security Policy to restrict the execution of scripts.