| عنوان | code-projects Chat System 1 Cross Site Scripting |
|---|
| الوصف | In the file '/admin/update_room.php' in admin account, there is an unrestricted cross-site scripting (XSS) stored vulnerability and injection attacks in the "Chat System" system on the 'name' parameter. This function will execute the user parameter without restriction. Malicious attackers can exploit this vulnerability to obtain sensitive information from clients. |
|---|
| المصدر | ⚠️ https://code-projects.org/chat-system-using-php-source-code/ |
|---|
| المستخدم | Fergod (UID 55882) |
|---|
| ارسال | 28/12/2024 06:01 AM (1 سنة منذ) |
|---|
| الاعتدال | 28/12/2024 05:16 PM (11 hours later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 289710 [code-projects Chat System 1.0 Chat Room Page /admin/update_room.php الأسم البرمجة عبر المواقع] |
|---|
| النقاط | 19 |
|---|