Invia #426884: code-projects Pharmacy Management System 1.0 Basic Cross Site Scriptinginformazioni

Titolocode-projects Pharmacy Management System 1.0 Basic Cross Site Scripting
DescrizioneA **stored XSS vulnerability** has been identified in the **Pharmacy Management System** version 1.0, specifically in the **supplier management update functionality**. This vulnerability occurs because the input in the `address` parameter is not properly sanitized before being saved to the database. This flaw allows attackers to inject malicious JavaScript code that will persist in the system and execute whenever the affected supplier record is accessed.
Fonte⚠️ https://gist.github.com/higordiego/bc051be4a8c6b6641578cad533742aab
Utente
 c4ttr4ck (UID 75518)
Sottomissione19/10/2024 18:06 (2 anni fa)
Moderazione20/10/2024 20:49 (1 day later)
StatoAccettato
Voce VulDB281022 [code-projects Pharmacy Management System 1.0 Manage Supplier Page /manage_supplier.php address cross site scripting]
Punti20

PrecedenteVisione D'ensembleIl prossimo

Interested in the pricing of exploits?

See the underground prices here!