CVE-2021-42662

Name of the Vulnerable Software and Affected Versions Sourcecodester Online Event Booking and Reservation System (affected versions not specified)

Description A Stored Cross Site Scripting (XSS) issue exists due to inadequate protection of the web page structure. This allows a remote attacker to run javascript commands on behalf of the web server user, potentially leading to cookie stealing and other malicious activities. The vulnerability is specifically related to the Holiday reason parameter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.