CVE-2023-2740

Name of the Vulnerable Software and Affected Versions SourceCodester Guest Management System version 1.0

Description A problematic issue has been found in the file dateTest.php of the component GET Parameter Handler. The manipulation of the name argument leads to cross-site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Recommendations For SourceCodester Guest Management System version 1.0, consider disabling the dateTest.php file or restricting access to the GET Parameter Handler component until a patch is available. Avoid using the name argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.