Title | Sourcecodester Warehouse Management System v1.0 Store XSS on customer.php |
---|
Description | Warehouse Management System Store XSS on (customer.php) .The potential risk of Cross-Site Scripting (XSS) arises because the values of the `$nama_customer` and `$alamat_customer` and`$notelp_customer`variables are directly inserted into the `value` attribute of HTML input fields without undergoing HTML entity encoding. This means that if these variables contain malicious JavaScript code, this code will be executed by the browser when the page loads. |
---|
Source | ⚠️ https://github.com/fubxx/CVE/blob/main/WarehouseManagementSystemXSS3.md |
---|
User | LI YU (UID 67398) |
---|
Submission | 04/09/2024 03:29 AM (8 months ago) |
---|
Moderation | 04/10/2024 07:53 PM (2 days later) |
---|
Status | Accepted |
---|
VulDB Entry | 260271 [SourceCodester Warehouse Management System 1.0 customer.php nama_customer/alamat_customer/notelp_customer cross site scripting] |
---|
Points | 20 |
---|