N/A

A stored cross-site scripting (XSS) vulnerability exists in Cyber Cafe Management System v1.0. An authenticated attacker can inject arbitrary JavaScript code into the username parameter via the add-users.php endpoint. The injected payload is stored and executed in the victim s browser when the affected page is accessed.

N/A

N/A

PHPGurukul Cyber Cafe Management System 安全漏洞

PHPGurukul Cyber Cafe Management System是PHPGurukul公司的一个网吧管理系统。 PHPGurukul Cyber Cafe Management System v1.0版本存在安全漏洞，该漏洞源于add-users.php端点的username参数未对输入进行充分处理，可能导致存储型跨站脚本攻击。

N/A

N/A