إرسال #48573: Cashier Queuing System v1.0 - Stored XSSالمعلومات

عنوان	Cashier Queuing System v1.0 - Stored XSS
الوصف	Description: A Stored XSS in Cashier Queuing System v1.0 leads to Arbitrary JavaScript code injection in User Creation. Vulnerable Parameters: Name Username Payload: <script>prompt(1)</script> Steps: 1) Login into admin account 2) Now go to User list and in that click on "Add New" 3) Now create a user but in name and username put your payload Payload: <script>prompt(1)</script> 4) Save the users and refresh the page and our payload has been executed
المستخدم	Hackpk (UID 33860)
ارسال	17/10/2022 05:07 PM (4 سنوات منذ)
الاعتدال	18/10/2022 11:30 AM (18 hours later)
الحالة	تمت الموافقة
إدخال VulDB	211187 [SourceCodester Cashier Queuing System 1.0.1 User Creation البرمجة عبر المواقع]
النقاط	17

Do you need the next level of professionalism?

Upgrade your account now!