| عنوان | Online Pizza Ordering System has Stored XSS vulnerability |
|---|
| الوصف | BUG_Author: Murasaki
URL:http://localhost/php-opos/index.php?page=checkout
Link:https://www.sourcecodester.com/php/16166/online-pizza-ordering-system-php-free-source-code.html
There is a stored XSS vulnerability in the order submission,attackers can use XSS injection to steal the identity authentication of administrative users, and perform some background operations as administrators to achieve CSRF attacks. Attackers can also hang horses on websites, so that visitors' browsers can be controlled by attackers.
|
|---|
| المصدر | ⚠️ https://github.com/1MurasaKi/PizzeXSS_Report/blob/main/Online%20Pizza%20Ordering%20System/README.md |
|---|
| المستخدم | Murasaki (UID 41555) |
|---|
| ارسال | 22/02/2023 02:53 AM (3 سنوات منذ) |
|---|
| الاعتدال | 23/02/2023 04:20 PM (2 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 221680 [SourceCodester Online Pizza Ordering System 1.0 index.php?page=checkout البرمجة عبر المواقع] |
|---|
| النقاط | 20 |
|---|