Submit #472194: PHPGurukul Land Record System 00.0.0.1 Cross Site Scriptinginfo

TitelPHPGurukul Land Record System 00.0.0.1 Cross Site Scripting
BeschreibungIn the directory '/landrecordsys/admin/admin-profile.php' in admin account, there is an unrestricted cross-site scripting (XSS) vulnerability and injection attacks in the "Land Record System" system on the 'Admin Name' parameter. This function will execute the user parameter without restriction. Malicious attackers can exploit this vulnerability to obtain sensitive information from clients. script: "><img src=x onerror=alert(document.cookie)>"</b>
Quelle⚠️ https://phpgurukul.com/land-record-system-using-php-and-mysql/
Benutzer
 Fergod (UID 55882)
Einreichung30.12.2024 17:29 (vor 2 Jahren)
Moderieren31.12.2024 09:58 (16 hours later)
StatusAkzeptiert
VulDB Eintrag289836 [PHPGurukul Land Record System 1.0 /admin/admin-profile.php Admin Name Cross Site Scripting]
Punkte20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!