N/A

Cross-site scripting (XSS) vulnerability in search.cgi in Loris Hotel Reservation System 3.01 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the hotel_name parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

N/A

N/A

loris hotel_reservation_system search.cgi 跨站脚本攻击漏洞

Loris Hotel Reservation System 以及可能之前的版本中的search.cgi存在跨站脚本攻击漏洞。远程攻击者可以借助hotel_name参数注入任意的web脚本或HTML。注意：该消息源未知，详情仅仅是从第三方得到的。

N/A

N/A