CVE-2022-2579

Name of the Vulnerable Software and Affected Versions SourceCodester Garage Management System version 1.0

Description A problematic issue was found in the software, affecting an unknown function of the file /php action/createUser.php. The manipulation of the userName argument with a specific input leads to cross-site scripting. This can be launched remotely.

Recommendations For SourceCodester Garage Management System version 1.0, consider restricting the input for the userName argument in the /php action/createUser.php file to prevent cross-site scripting attacks. As a temporary workaround, consider validating and sanitizing all user input to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.