提出 #510689: code-projects Online Class and Exam Scheduling System 1.0 Cross Site Scripting情報

タイトルcode-projects Online Class and Exam Scheduling System 1.0 Cross Site Scripting
説明In /Scheduling/scheduling/pages/profile.php There are unrestricted stored cross site scripting attacks and injection attacks in the Online Class and Exam Scheduling System. The controllable parameters are as follows: username. This function will execute the user parameter without restriction into the echo statement. Malicious attackers can exploit this vulnerability to obtain sensitive information from clients
ソース⚠️ https://hexotion.notion.site/Online-Class-and-Exam-Scheduling-System-in-PHP-has-Stored-Cross-Site-Scripting-vulnerability-in-prof-1a7bb766cf32809b9f0be980e90d83f7?pvs=73
ユーザー
 Hexer. (UID 79448)
送信2025年02月27日 08:35 (1 年 ago)
モデレーション2025年03月04日 17:09 (5 days later)
ステータス承諾済み
VulDBエントリ298556 [code-projects Online Class and Exam Scheduling System 1.0 profile.php ユーザー名 クロスサイトスクリプティング]
ポイント16

Do you know our Splunk app?

Download it now for free!