| Titolo | Gaatitrack Gaatitrack courier management system 10/27 Cross site Scripting |
|---|
| Descrizione | The system has a reflective XSS vulnerability ('Cross site Scripting') [CWE-79], which allows attackers to obtain administrator cookies and other information by inserting malicious JavaScript statements, allowing attackers to fake administrator login through cookies. |
|---|
| Fonte | ⚠️ https://github.com/Glunko/gaatitrack-courier-management-system_vulnerability/blob/main/Cross_site_Scripting.md |
|---|
| Utente | G1un (UID 59945) |
|---|
| Sottomissione | 14/12/2023 10:48 (3 anni fa) |
|---|
| Moderazione | 16/12/2023 20:32 (2 days later) |
|---|
| Stato | Duplicato |
|---|
| Voce VulDB | 240886 [SourceCodester Best Courier Management System 1.0 manage_parcel_status.php ID cross site scripting] |
|---|
| Punti | 0 |
|---|