Submit #374853: SourceCodester Student Study Center Desk Management System 1.0 Cross Site Scriptinginfo

Titel	SourceCodester Student Study Center Desk Management System 1.0 Cross Site Scripting
Beschreibung	## Details ### Related Code file: `/sscdms/classes/Users.php?f=save` ### XSS parameter: `firstname` In the POST request, the "firstname" parameter is vulnerable to Cross Site Scripting. ## Payload ``` <script>print()</script> ``` ## Report link: https://reports-kunull.vercel.app/CVE%20research/student-study-center-desk-management-system-xss-firstname
Quelle	⚠️ https://www.sourcecodester.com/php/16298/student-study-center-desk-management-system-using-php-oop-and-mysql-db-free-source-code
Benutzer	Anonymous User
Einreichung	15.07.2024 11:31 (vor 2 Jahren)
Moderieren	16.07.2024 21:28 (1 day later)
Status	Akzeptiert
VulDB Eintrag	271706 [SourceCodester Student Study Center Desk Management System 1.0 HTTP POST Request Users.php?f=save firstname/middlename/lastname/username Cross Site Scripting]
Punkte	19

Do you want to use VulDB in your project?

Use the official API to access entries easily!