| Título | Online Computer and Laptop StoreV1.0 Cross site scripting attack at system name setting |
|---|
| Descripción | This project is entitled Online Computer and Laptop Store. This web application was developed to provide an online platform for a certain computer store or business possible customers for exploring and ordering the products.Version number: v1.0
Source code online address:https://www.sourcecodester.com/php/16397/online-computer-and-laptop-store-using-php-and-mysql-source-code-free-download.html
At the administrator system settings, there is a storage based cross site scripting attack that will affect all users accessing the backend management of the system, as the vulnerability lies at the system name and will execute as soon as they enter the backend!
|
|---|
| Fuente | ⚠️ https://github.com/boyi0508/Online-Computer-and-Laptop-Store/blob/main/Cross%20site%20scripting%20attack%20at%20system%20name%20setting.pdf |
|---|
| Usuario | haicheng.zhang (UID 38987) |
|---|
| Sumisión | 2023-04-08 04:43 (hace 3 años) |
|---|
| Moderación | 2023-04-08 08:31 (4 hours later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 225348 [SourceCodester Online Computer and Laptop Store 1.0 /admin/?page=system_info System Name secuencias de comandos en sitios cruzados] |
|---|
| Puntos | 20 |
|---|