Enviar #404874: SourceCodester Leads Manager Tool 1.0 Server-Side Request Forgeryinformación

TítuloSourceCodester Leads Manager Tool 1.0 Server-Side Request Forgery
DescripciónAt add-leads.php, no validation or sanitization for user input enables an authenticated account to inject an iframe tag or something similar to include an src attribute exposing internal services.
Fuente⚠️ https://drive.google.com/file/d/145MSmCe7CJoKMXzJ0XJNRYPbHykxQLjX/view?usp=sharing
Usuario
 dwgth4i (UID 74608)
Sumisión2024-09-09 13:56 (hace 2 años)
Moderación2024-09-09 17:06 (3 hours later)
EstadoDuplicado
Entrada de VulDB274065 [SourceCodester Leads Manager Tool 1.0 Add Leads /endpoint/add-leads.php leads_name/phone_number secuencias de comandos en sitios cruzados]
Puntos0

AnteriorVisión De ConjuntoPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!