जमा करें #776186: code-projects Online Food Ordering System 1.0 Cross Site Scriptingजानकारी

शीर्षकcode-projects Online Food Ordering System 1.0 Cross Site Scripting
विवरणA vulnerability classified as problematic has been identified in Online Food Ordering System 1.0 by code-projects.org. Affected by this issue is an unknown functionality of the file /form/order.php within the Order Module. The manipulation of the argument cust_id leads to cross-site scripting (XSS). The attack can be initiated remotely by crafting a malicious request containing a specially crafted value for the cust_id parameter. When processed by the application, the injected script is reflected in the server response and executed in the victim's browser context. Successful exploitation may allow attackers to execute arbitrary JavaScript in the browser of the affected user, which could lead to session hijacking, credential theft or redirection to malicious websites. The exploit has been disclosed to the public and may be used without authentication.
स्रोत⚠️ https://gist.github.com/HxH404/f7f1502ffc9f2aacc936a6e8f290b6a5
उपयोगकर्ता
 Abhiram T (UID 96000)
सबमिशन10/03/2026 10:19 AM (4 महीनों पहले)
संयम30/03/2026 03:36 PM (20 days later)
स्थितिस्वीकृत
VulDB प्रविष्टि354189 [code-projects Online Food Ordering System 1.0 Order /form/order.php cust_id क्रॉस साइट स्क्रिप्टिंग]
अंक20

Do you want to use VulDB in your project?

Use the official API to access entries easily!