Invia #42809: Student-Admission-Reflection Xssinformazioni

TitoloStudent-Admission-Reflection Xss
DescrizionePayload:index.php?a=edit&eid=8</h3><script>alert(1)</script> Without checking the EID parameter, PHP print is directly used to output it, causing reflective XSS vulnerability and allowing attackers to obtain Cookie values. Code ``` <div class="form-area"> <div class="container"> <div class="row"> <div class="col-md-12"> <div class="section-title"> <h3 id="et">Edit the ID: <?php print $_GET['eid'].', Name: '.$row["sname"]; ?>'s information</h3> ``` url:https://github.com/badboycxcc/Student-Admission-Xss
Fonte⚠️ https://github.com/badboycxcc/Student-Admission-Xss
Utente
 cxaqhq (UID 23728)
Sottomissione04/08/2022 07:58 (4 anni fa)
Moderazione04/08/2022 08:05 (7 minutes later)
StatoAccettato
Voce VulDB205572 [SourceCodester Online Admission System index.php eid cross site scripting]
Punti20

PrecedenteVisione D'ensembleIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!