Rvpipalwa

**Name of the Vulnerable Software and Affected Versions** SourceCodester Resort Reservation System version 1.0 **Description** A cross site scripting issue exists in SourceCodester Resort Reservation System version 1.0. The issue is located in the Reservation Management Module, specifically within the `/page=manage reservation` file. Manipulation of the `ID` argument can lead to the execution of malicious scripts. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System version 1.0 **Description** A cross site scripting issue exists due to the manipulation of the `First Name` argument. This affects an unknown function within the `/registration.php` file of the Patient Registration Module. Remote exploitation is possible, and an exploit is publicly available. **Recommendations** Apply any available updates to address the issue in the Patient Registration Module. As a temporary workaround, consider sanitizing the `First Name` input to prevent script injection. Restrict access to the `/registration.php` file to minimize the risk of exploitation.

**Nome do Software Vulnerável e Versões Afetadas** SourceCodester Client Database Management System versão 1.0 **Descrição** Existe uma falha no SourceCodester Client Database Management System 1.0 no Módulo de Geração de Leads. A falha afeta o arquivo `/user leads.php` e permite upload de arquivos sem restrições, potencialmente explorável remotamente. O exploit foi publicado. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para esta vulnerabilidade.