Enviar #426884: code-projects Pharmacy Management System 1.0 Basic Cross Site Scriptinginformación

Títulocode-projects Pharmacy Management System 1.0 Basic Cross Site Scripting
DescripciónA **stored XSS vulnerability** has been identified in the **Pharmacy Management System** version 1.0, specifically in the **supplier management update functionality**. This vulnerability occurs because the input in the `address` parameter is not properly sanitized before being saved to the database. This flaw allows attackers to inject malicious JavaScript code that will persist in the system and execute whenever the affected supplier record is accessed.
Fuente⚠️ https://gist.github.com/higordiego/bc051be4a8c6b6641578cad533742aab
Usuario
 c4ttr4ck (UID 75518)
Sumisión2024-10-19 18:06 (hace 2 años)
Moderación2024-10-20 20:49 (1 day later)
EstadoAceptado
Entrada de VulDB281022 [code-projects Pharmacy Management System 1.0 Manage Supplier Page /manage_supplier.php address secuencias de comandos en sitios cruzados]
Puntos20

AnteriorVisión De ConjuntoPróximo

Want to know what is going to be exploited?

We predict KEV entries!