CVE-2014-4035CVE-2014-4035

Affected configuration(s):

cpe:/a:bestsoftinc:advance_hotel_booking_system:2.0

Date published: 2014-06-11T10:55:10.067-04:00

Date last modified: 2014-06-12T14:09:31.850-04:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://packetstormsecurity.com/files/126949/BSI-Advance-Hotel-Booking-System-2.0-Cross-Site-Scripting.html

Summary: Cross-site scripting (XSS) vulnerability in booking_details.php in Best Soft Inc. (BSI) Advance Hotel Booking System 2.0 allows remote attackers to inject arbitrary web script or HTML via the title parameter.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.