إرسال #106864: Young Entrepreneur E-Negosyo System v1.0 /bsenordering/admin/category/index.php GET parameter view exists XSS vulnerabilityالمعلومات

عنوانYoung Entrepreneur E-Negosyo System v1.0 /bsenordering/admin/category/index.php GET parameter view exists XSS vulnerability
الوصفAn issue was discovered in Young Entrepreneur E-Negosyo System v1.0. There is a XSS vulnerability that it is possible to inject arbitrary JavaScript into the application's response via /bsenordering/admin/category/index.php?view. Payload1:/bsenordering/admin/category/index.php?view=<script>alert(233)</script> Payload2:/bsenordering/admin/category/index.php?view=<script>alert(document.cookie)</script>
المصدر⚠️ https://github.com/Apeng96/bug_report/blob/main/XSS-1.md
المستخدم
 aroc (UID 43882)
ارسال28/03/2023 09:43 AM (3 سنوات منذ)
الاعتدال28/03/2023 10:32 PM (13 hours later)
الحالةتمت الموافقة
إدخال VulDB224243 [SourceCodester Young Entrepreneur E-Negosyo System 1.0 GET Parameter index.php view البرمجة عبر المواقع]
النقاط20

التالي نظرة عامة السابق

Do you know our Splunk app?

Download it now for free!