CVE-2023-5305

Name of the Vulnerable Software and Affected Versions Online Banquet Booking System version 1.0

Description A vulnerability was found in the Online Banquet Booking System, affecting some unknown functionality of the file /mail.php of the component Contact Us Page. The manipulation of the message argument leads to cross-site scripting. The attack may be launched remotely.

Recommendations For Online Banquet Booking System version 1.0, as a temporary workaround, consider restricting access to the /mail.php file or disabling the Contact Us Page until a patch is available. Avoid using the message argument in the affected functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.