| Título | Sourcecodester Mobile Management Store 1.0 Stored XSS |
|---|
| Descripción | The update profile functionality is vulnerable to stored XSS in the 'firstname' parameter. Attackers are able to submit a malicious JavaScript code and hijack other session to takeover an account. |
|---|
| Fuente | ⚠️ https://github.com/vanitashtml/CVE-Dumps/blob/main/Stored%20XSS%20Mobile%20Management%20Store.md |
|---|
| Usuario | rjavenido22 (UID 64261) |
|---|
| Sumisión | 2024-03-01 13:15 (hace 2 años) |
|---|
| Moderación | 2024-03-02 23:15 (1 day later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 255498 [SourceCodester Online Mobile Management Store 1.0 update-tracker.php firstname secuencias de comandos en sitios cruzados] |
|---|
| Puntos | 16 |
|---|