CVE-2022-41358 Information

Description

A stored cross-site scripting (XSS) vulnerability in Garage Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the categoriesName parameter in createCategories.php.

Reference

https://github.com/thecasual/CVE-2022-41358 https://www.sourcecodester.com/php/15485/garage-management-system-using-phpmysql-source-code.html http://packetstormsecurity.com/files/168718/Garage-Management-System-1.0-Cross-Site-Scripting.html