Invia #398843: ABCD Community ABCD2 2.x Cross Site Scriptinginformazioni

TitoloABCD Community ABCD2 2.x Cross Site Scripting
DescrizioneThere is a Cross Site Scripting (XSS) vulnerability in buscar_integrada.php file, using the parameter Sub_Expresion. Example: https://XXXXX/opac/php/buscar_integrada.php?lang=pt&base=acervo&modo=1B&alcance=and&Opcion=libre&prefijo=TW_&Sub_Expresion=MG_00056fas%3Caudio%20src/onerror=alert(1)%3E
Fonte⚠️ https://github.com/peritocibernetico/ABCD_Vulnerabilities
Utente
 peritocibernetico (UID 74140)
Sottomissione27/08/2024 20:52 (2 anni fa)
Moderazione04/09/2024 10:39 (8 days later)
StatoAccettato
Voce VulDB276491 [ABCD ABCD2 fino a 2.2.0-beta-1 /buscar_integrada.php Sub_Expresion cross site scripting]
Punti18

PrecedenteVisione D'ensembleIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!