| タイトル | www.sourcecodester.com Vehicle Management System 1.0 Cross-site Scripting (XSS) |
|---|
| 説明 | The id parameter in the confirmbooking.php file of the Vehicle Management System is not strictly verified for user input, resulting in the input data can be combined with Sql statements, resulting in the user input information displayed on the page without filtering. As a result, Cross-site Scripting (XSS) exists. Attackers can exploit the vulnerability, threatening user security.
Source DownLoad:https://www.sourcecodester.com/php/14404/vehicle-management-system-phpmysql.html |
|---|
| ソース | ⚠️ https://github.com/Keyand/Multi-Restaurant-Table-Reservation-System-Search/blob/main/Vehicle%20Management%20System%20confirmbooking.php%20has%20Cross-site%20Scripting%20(XSS).pdf |
|---|
| ユーザー | kkey (UID 81096) |
|---|
| 送信 | 2025年03月07日 01:52 (1 年 ago) |
|---|
| モデレーション | 2025年03月16日 14:29 (10 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 299876 [SourceCodester Vehicle Management System 1.0 /confirmbooking.php 識別子 クロスサイトスクリプティング] |
|---|
| ポイント | 20 |
|---|