| शीर्षक | SourceCodester Leads Manager Tool 1.0 Server-Side Request Forgery |
|---|
| विवरण | At add-leads.php, no validation or sanitization for user input enables an authenticated account to inject an iframe tag or something similar to include an src attribute exposing internal services.
|
|---|
| स्रोत | ⚠️ https://drive.google.com/file/d/145MSmCe7CJoKMXzJ0XJNRYPbHykxQLjX/view?usp=sharing |
|---|
| उपयोगकर्ता | dwgth4i (UID 74608) |
|---|
| सबमिशन | 09/09/2024 01:56 PM (2 साल पहले) |
|---|
| संयम | 09/09/2024 05:06 PM (3 hours later) |
|---|
| स्थिति | प्रतिलिपि |
|---|
| VulDB प्रविष्टि | 274065 [SourceCodester Leads Manager Tool 1.0 Add Leads /endpoint/add-leads.php leads_name/phone_number क्रॉस साइट स्क्रिप्टिंग] |
|---|
| अंक | 0 |
|---|