| عنوان | code-projects Pharmacy Management System 1.0 Basic Cross Site Scripting |
|---|
| الوصف | A **stored XSS vulnerability** has been identified in the **Pharmacy Management System** version 1.0, specifically in the **supplier management update functionality**. This vulnerability occurs because the input in the `address` parameter is not properly sanitized before being saved to the database. This flaw allows attackers to inject malicious JavaScript code that will persist in the system and execute whenever the affected supplier record is accessed. |
|---|
| المصدر | ⚠️ https://gist.github.com/higordiego/bc051be4a8c6b6641578cad533742aab |
|---|
| المستخدم | c4ttr4ck (UID 75518) |
|---|
| ارسال | 19/10/2024 06:06 PM (2 سنوات منذ) |
|---|
| الاعتدال | 20/10/2024 08:49 PM (1 day later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 281022 [code-projects Pharmacy Management System 1.0 Manage Supplier Page /manage_supplier.php address البرمجة عبر المواقع] |
|---|
| النقاط | 20 |
|---|