जमा करें #274337: Source Coder Facebook News Feed Like using PHP/MySQL with Source Code v1.0 HTML Injection on create post.जानकारी

शीर्षकSource Coder Facebook News Feed Like using PHP/MySQL with Source Code v1.0 HTML Injection on create post.
विवरण# Exploit Title: Facebook News Feed Like using PHP/MySQL with Source Code v1.0 - HTML Injection in Create post. # Exploit Author: Ritik Dewan # Vendor Name: oretnom23 # Vendor Homepage:https://www.sourcecodester.com/php/14602/facebook-news-feed-using-phpmysqli-source-code.html # Software Link: https://www.sourcecodester.com/php/14602/facebook-news-feed-using-phpmysqli-source-code.html # Version: v1.0 # Tested on: Windows 11, Apache Description: A multiple HTML Injection in Facebook News Feed Like using PHP/MySQL with Source Code v1.0 allows an attacker to input arbitrary html entities into those vulnerable parameters. Vulnerable Parameters: Description of create post Payload: <marquee>HACKED</marquee> Steps: 1) Login into your account. 2) Click on create post. 3) Now in create post add this below payload in description parameter Payload: <marquee>HACKED</marquee> 4) Now save the post and our payload has been executed.
उपयोगकर्ता
 dewanritik (UID 33804)
सबमिशन28/01/2024 03:59 PM (2 साल पहले)
संयम29/01/2024 02:31 PM (23 hours later)
स्थितिस्वीकृत
VulDB प्रविष्टि252301 [SourceCodester Facebook News Feed Like 1.0 Post विवरण क्रॉस साइट स्क्रिप्टिंग]
अंक17

Want to stay up to date on a daily basis?

Enable the mail alert feature now!