| عنوان | SourceCodester Best House Rental Management System 1.0 Cross Site Scripting |
|---|
| الوصف | At function add tenants at tenants.php allows adding new tenants but with no sanitization for inputs, then the inputs will show at "/index.php?page=tenants", this requires an authenticated account so the attacker could inject cross-site scripting payloads and user interaction. |
|---|
| المصدر | ⚠️ https://drive.google.com/file/d/1mB2ZNyWJDqJaZZro4qiMqovRO_qo4pss/view?usp=sharing |
|---|
| المستخدم | dwgth4i (UID 74608) |
|---|
| ارسال | 09/09/2024 12:50 PM (2 سنوات منذ) |
|---|
| الاعتدال | 09/09/2024 04:53 PM (4 hours later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 276840 [SourceCodester Best House Rental Management System 1.0 New Tenant Page /index.php?page=tenants Last Name/First Name/Middle Name البرمجة عبر المواقع] |
|---|
| النقاط | 17 |
|---|