Home
Description
A Cross-Site Scripting (XSS) vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. The vulnerability allows remote attackers to inject arbitrary JavaScript code via the fromdate and todate parameters.
References
github.com/...igner-bwdates-reports-details-XSS-injection.md
github.com/...igner-bwdates-reports-details-XSS-injection.md