जमा करें #472192: PHPGurukul Land Record System 0.0.1 Cross Site Scriptingजानकारी

शीर्षकPHPGurukul Land Record System 0.0.1 Cross Site Scripting
विवरणIn the directory '/landrecordsys/admin/contactus.php' in admin account, there is an unrestricted cross-site scripting (XSS) vulnerability and injection attacks in the "Land Record System" system on the 'Page Description' parameter. This function will execute the user parameter without restriction. Malicious attackers can exploit this vulnerability to obtain sensitive information from clients. script: "><img src=x onerror=alert(document.cookie)>"</b>
स्रोत⚠️ https://phpgurukul.com/land-record-system-using-php-and-mysql/
उपयोगकर्ता
 Fergod (UID 55882)
सबमिशन30/12/2024 05:26 PM (2 साल पहले)
संयम31/12/2024 09:58 AM (17 hours later)
स्थितिस्वीकृत
VulDB प्रविष्टि289834 [PHPGurukul Land Record System 1.0 /admin/contactus.php Page Description क्रॉस साइट स्क्रिप्टिंग]
अंक20

Want to know what is going to be exploited?

We predict KEV entries!