| Titre | projectworlds Expense Management System v1.0 Critical Persistent Cross-Site Scripting (XSS) |
|---|
| Description | A critical Persistent Cross-Site Scripting (XSS) vulnerability has been identified in the Expense Management System in php free download. This vulnerability allows an authenticated attacker to inject malicious client-side scripts into the application's database. These scripts are then executed in the browsers of other users, including administrators, who view the compromised pages.public/admin/expense_categories/create |
|---|
| La source | ⚠️ https://github.com/QIU-DIE/CVE/issues/12 |
|---|
| Utilisateur | LINXI666 (UID 91556) |
|---|
| Soumission | 12/10/2025 08:07 (il y a 6 mois) |
|---|
| Modérer | 25/10/2025 19:00 (13 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 329901 [projectworlds Expense Management System 1.0 Expense Categories Page create cross site scripting] |
|---|
| Points | 20 |
|---|