| 제목 | phpgurukul.com Hospital Management System 08 Nov 2022 Stored XSS |
|---|
| 설명 | Upon successful login, the XSS payload (`<img src="x" onerror=alert(document.cookie)>`) in the "First Name" field should trigger an alert box displaying the user's cookies. This indicates that the Stored XSS vulnerability exists, and the payload executed in the context of another user's session.
this is the t
link of vulnerable application https://phpgurukul.com/hospital-management-system-in-php/ |
|---|
| 원천 | ⚠️ https://drive.google.com/file/d/1Mqs0mmxxmKLrFLHekPke5bZnzMHvnrFm/view?usp=sharing |
|---|
| 사용자 | sharath213 (UID 60748) |
|---|
| 제출 | 2023. 12. 29. AM 09:01 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 12. 29. PM 08:46 (12 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 249357 [PHPGurukul Hospital Management System 1.0 registration.php First Name 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|