CVE-2026-11338
Cross-Site Scripting in Ship Ferry Ticket Reservation System
Publication date: 2026-06-05
Last updated on: 2026-06-05
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| sourcecodester | ship_ferry_ticket_reservation_system | 1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-94 | The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment. |
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-11338 is a Stored Cross-Site Scripting (Stored XSS) vulnerability in the SourceCodester Ship/Ferry Ticket Reservation System. It occurs due to improper sanitization of user input in the username field during user creation or modification.
An authenticated attacker with administrative privileges can inject malicious JavaScript code into the username field. This malicious code is stored in the system's database and executed automatically when other authenticated users view the affected pages.
This leads to arbitrary JavaScript execution in the browsers of victims, potentially enabling session hijacking, account compromise, credential theft, unauthorized actions, or phishing attacks.
How can this vulnerability impact me? :
The vulnerability allows attackers to execute arbitrary JavaScript in the browsers of other authenticated users, which can lead to several serious impacts:
- Session hijacking, allowing attackers to take over user sessions.
- Account compromise through theft of credentials or unauthorized actions.
- Credential theft by capturing sensitive information entered by users.
- Phishing attacks by injecting malicious content to deceive users.
Because the malicious code is stored persistently, both low-privileged users and administrators are at risk when they access affected pages.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by testing the username input field in the /admin/?page=user/manage_user page for stored cross-site scripting (XSS) payloads. An example method is to inject a JavaScript payload such as <img src=x onerror=alert(document.domain)> into the username field and then observe if the payload executes when the page is viewed by other users.
Detection involves verifying if user input is properly sanitized and if malicious scripts are executed in the browser when viewing affected pages.
There are no specific network commands provided, but manual testing or using web vulnerability scanners that test for stored XSS in user input fields can help detect this issue.
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include implementing proper input sanitization and output encoding on the username field to prevent malicious scripts from being stored and executed.
Additionally, applying allow-list validation for acceptable input values and deploying a Content Security Policy (CSP) can help reduce the risk of exploitation.
Since the vulnerability requires administrative privileges to inject the payload, restricting and monitoring admin access can also help mitigate risk.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability allows an authenticated attacker with administrative privileges to inject malicious JavaScript into the username field, leading to arbitrary script execution in other users' browsers. This can result in session hijacking, account compromise, credential theft, unauthorized actions, or phishing attacks.
Such security weaknesses can lead to unauthorized access and data breaches, which may violate common standards and regulations like GDPR and HIPAA that require protection of personal and sensitive data.
Therefore, if exploited, this vulnerability could negatively impact compliance by exposing user data and credentials, potentially leading to regulatory penalties and loss of trust.