Enviar #48573: Cashier Queuing System v1.0 - Stored XSSinformación

TítuloCashier Queuing System v1.0 - Stored XSS
DescripciónDescription: A Stored XSS in Cashier Queuing System v1.0 leads to Arbitrary JavaScript code injection in User Creation. Vulnerable Parameters: Name Username Payload: <script>prompt(1)</script> Steps: 1) Login into admin account 2) Now go to User list and in that click on "Add New" 3) Now create a user but in name and username put your payload Payload: <script>prompt(1)</script> 4) Save the users and refresh the page and our payload has been executed
Usuario
 Hackpk (UID 33860)
Sumisión2022-10-17 17:07 (hace 4 años)
Moderación2022-10-18 11:30 (18 hours later)
EstadoAceptado
Entrada de VulDB211187 [SourceCodester Cashier Queuing System 1.0.1 User Creation secuencias de comandos en sitios cruzados]
Puntos17

AnteriorVisión De ConjuntoPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!