إرسال #426885: code-projects Pharmacy Management System 1.0 Cross Site Scriptingالمعلومات

عنوانcode-projects Pharmacy Management System 1.0 Cross Site Scripting
الوصفA stored XSS vulnerability has been identified in the Pharmacy Management System version 1.0, specifically within the medicine update functionality. This vulnerability arises due to the absence of proper input sanitization in the suppliers_name parameter. An attacker can inject malicious JavaScript code, which will be stored persistently in the database and executed every time the medicine record is accessed.
المصدر⚠️ https://gist.github.com/higordiego/93343006341d3799de0cb8912cc328ec
المستخدم
 c4ttr4ck (UID 75518)
ارسال19/10/2024 06:09 PM (2 سنوات منذ)
الاعتدال20/10/2024 08:49 PM (1 day later)
الحالةتمت الموافقة
إدخال VulDB281023 [code-projects Pharmacy Management System 1.0 Manage Customer Page /manage_customer.php suppliers_name/address البرمجة عبر المواقع]
النقاط20

Want to know what is going to be exploited?

We predict KEV entries!