Enviar #787669: SourceCodester Sales and Inventory System 1.0 Cross Site Scriptinginformación

TítuloSourceCodester Sales and Inventory System 1.0 Cross Site Scripting
DescripciónA reflected cross-site scripting (XSS) vulnerability exists in Sales and Inventory System 1.0. The vulnerability is located in the add_supplier.php file. The application fails to sanitize the GET parameter 'msg' before reflecting it in the response, allowing an authenticated attacker to execute arbitrary JavaScript in the victim's browser.
Fuente⚠️ https://github.com/meifukun/Web-Security-PoCs/blob/main/Inventory-System/XSS-AddSupplier-msg.md
Usuario
 563742137abc (UID 95813)
Sumisión2026-03-25 02:55 (hace 24 días)
Moderación2026-04-08 17:12 (15 days later)
EstadoDuplicado
Entrada de VulDB354206 [SourceCodester Sales and Inventory System 1.0 Parameter add_supplier.php msg secuencias de comandos en sitios cruzados]
Puntos0

AnteriorVisión De ConjuntoPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!