| Titel | Gaatitrack Gaatitrack courier management system 10/27 Cross site Scripting |
|---|
| Beschreibung | The system has a reflective XSS vulnerability ('Cross site Scripting') [CWE-79], which allows attackers to obtain administrator cookies and other information by inserting malicious JavaScript statements, allowing attackers to fake administrator login through cookies. |
|---|
| Quelle | ⚠️ https://github.com/Glunko/gaatitrack-courier-management-system_vulnerability/blob/main/Cross_site_Scripting.md |
|---|
| Benutzer | G1un (UID 59945) |
|---|
| Einreichung | 14.12.2023 10:48 (vor 3 Jahren) |
|---|
| Moderieren | 16.12.2023 20:32 (2 days later) |
|---|
| Status | Duplikat |
|---|
| VulDB Eintrag | 240886 [SourceCodester Best Courier Management System 1.0 manage_parcel_status.php ID Cross Site Scripting] |
|---|
| Punkte | 0 |
|---|