| Título | Gaatitrack Gaatitrack courier management system 10/27 Cross site Scripting |
|---|
| Descripción | The system has a reflective XSS vulnerability ('Cross site Scripting') [CWE-79], which allows attackers to obtain administrator cookies and other information by inserting malicious JavaScript statements, allowing attackers to fake administrator login through cookies. |
|---|
| Fuente | ⚠️ https://github.com/Glunko/gaatitrack-courier-management-system_vulnerability/blob/main/Cross_site_Scripting.md |
|---|
| Usuario | G1un (UID 59945) |
|---|
| Sumisión | 2023-12-14 10:48 (hace 3 años) |
|---|
| Moderación | 2023-12-16 20:32 (2 days later) |
|---|
| Estado | Duplicado |
|---|
| Entrada de VulDB | 240886 [SourceCodester Best Courier Management System 1.0 manage_parcel_status.php ID secuencias de comandos en sitios cruzados] |
|---|
| Puntos | 0 |
|---|