| शीर्षक | phpgurukul.com Hospital Management System 08 Nov 2022 Stored XSS |
|---|
| विवरण | Upon successful login, the XSS payload (`<img src="x" onerror=alert(document.cookie)>`) in the "First Name" field should trigger an alert box displaying the user's cookies. This indicates that the Stored XSS vulnerability exists, and the payload executed in the context of another user's session.
this is the t
link of vulnerable application https://phpgurukul.com/hospital-management-system-in-php/ |
|---|
| स्रोत | ⚠️ https://drive.google.com/file/d/1Mqs0mmxxmKLrFLHekPke5bZnzMHvnrFm/view?usp=sharing |
|---|
| उपयोगकर्ता | sharath213 (UID 60748) |
|---|
| सबमिशन | 29/12/2023 09:01 AM (3 साल पहले) |
|---|
| संयम | 29/12/2023 08:46 PM (12 hours later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 249357 [PHPGurukul Hospital Management System 1.0 registration.php First Name क्रॉस साइट स्क्रिप्टिंग] |
|---|
| अंक | 20 |
|---|