| Titel | Sourcecodester Mobile Management Store 1.0 Stored XSS |
|---|
| Beschreibung | The update profile functionality is vulnerable to stored XSS in the 'firstname' parameter. Attackers are able to submit a malicious JavaScript code and hijack other session to takeover an account. |
|---|
| Quelle | ⚠️ https://github.com/vanitashtml/CVE-Dumps/blob/main/Stored%20XSS%20Mobile%20Management%20Store.md |
|---|
| Benutzer | rjavenido22 (UID 64261) |
|---|
| Einreichung | 01.03.2024 13:15 (vor 2 Jahren) |
|---|
| Moderieren | 02.03.2024 23:15 (1 day later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 255498 [SourceCodester Online Mobile Management Store 1.0 update-tracker.php firstname Cross Site Scripting] |
|---|
| Punkte | 16 |
|---|