Description
A vulnerability was found in code-projects Traffic Offense Reporting System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /save-reported.php. The manipulation of the argument offence_id/vehicle_no/driver_license/name/address/gender/officer_reporting/offence leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Eine problematische Schwachstelle wurde in code-projects Traffic Offense Reporting System 1.0 ausgemacht. Davon betroffen ist unbekannter Code der Datei /save-reported.php. Dank der Manipulation des Arguments offence_id/vehicle_no/driver_license/name/address/gender/officer_reporting/offence mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk erfolgen. Der Exploit steht zur öffentlichen Verfügung.
Problem types
Product status
Timeline
| 2025-06-05: | Advisory disclosed |
| 2025-06-05: | VulDB entry created |
| 2025-06-05: | VulDB entry last update |
Credits
DS_Leo (VulDB User)
References
vuldb.com/?id.311300 (VDB-311300 | code-projects Traffic Offense Reporting System save-reported.php cross site scripting)
vuldb.com/?ctiid.311300 (VDB-311300 | CTI Indicators (IOB, IOC, TTP, IOA))
vuldb.com/?submit.590649 (Submit #590649 | code-projects Traffic Offense Reporting System 1.0 Cross Site Scripting)
github.com/tuooo/CVE/issues/4
code-projects.org/