| タイトル | Simple e-Learning System 1.0 Stored Cross-Site Scripting |
|---|
| 説明 | Simple e-Learning System is vulnerable to stored cross-site scripting.
XSS can be leveraged to carry out an array of attacks against application users such as accessing sensitive application data, logging user keystrokes, or obtaining user passwords stored in the browser. Stored XSS vulnerability allows an attacker to input and stores a payload on a website page that will subsequently execute in the browser of any user who visits the vulnerable page.
It was possible for an **authenticated** attacker to conduct cross-site scripting attacks. |
|---|
| ソース | ⚠️ https://github.com/CyberThoth/CVE/blob/83c243538386cd0761025f85eb747eab7cae5c21/CVE/Simple%20e-Learning%20System/Cross%20Site%20Scripting(Stored)/POC.md |
|---|
| ユーザー | cyberthoth (UID 28322) |
|---|
| 送信 | 2022年07月13日 09:06 (4 年 ago) |
|---|
| モデレーション | 2022年07月13日 09:08 (3 minutes later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 203779 [SourceCodester Simple e-Learning System 1.0 /vcs/claire_blake Bio クロスサイトスクリプティング] |
|---|
| ポイント | 20 |
|---|