Medium severity5.4NVD Advisory· Published Dec 20, 2023· Updated Jun 17, 2026
CVE-2023-49272
CVE-2023-49272
Description
Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'children' parameter of the reservation.php resource is copied into the HTML document as plain text between tags. Any input is echoed unmodified in the application's response.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 1.0
- Kashipara Group/Hotel Managementv5Range: 1.0
Patches
Vulnerability mechanics
References
2- fluidattacks.com/advisories/lang/nvdThird Party Advisory
- www.kashipara.comnvdProduct
News mentions
0No linked articles in our index yet.