A Persistent Cross-Site Scripting (XSS) vulnerability in message_admin.php in Projectworlds Car Rental Management System v1.0 allows unauthenticated remote malicious users to harvest an admin login session cookie and steal an admin session upon an admin login.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
car rental management system project car rental management system 1.0 |