제출 #166744: Performance Indicator System v1.0 /opils/admin/addproduct.php post form parameters prodname exists stored cross-site scripting vulnerability정보

제목Performance Indicator System v1.0 /opils/admin/addproduct.php post form parameters prodname exists stored cross-site scripting vulnerability
설명An issue was discovered in Performance Indicator System v1.0. There is a stored cross-site scripting vulnerability that it is possible to inject arbitrary JavaScript into the application's response via /opils/admin/addproduct.php post form parameters prodname. Payload:<script>alert(document.cookie)</script> Payload will trigger when a user visits on http://localhost/opils/admin/product.php
원천⚠️ https://github.com/wenwochunfeng/bugReport/blob/main/XSS.md
사용자
 BaiXiJun (UID 48383)
제출2023. 06. 09. AM 10:33 (3 연령 ago)
모더레이션2023. 06. 09. PM 02:39 (4 hours later)
상태수락
VulDB 항목231163 [SourceCodester Performance Indicator System 1.0 /admin/addproduct.php prodname 크로스 사이트 스크립팅]
포인트들20

Want to know what is going to be exploited?

We predict KEV entries!