| 제목 | SourceCodester Clinic Queuing System using PHP and SQlite3 1.0 Cross Site Scripting |
|---|
| 설명 | The patient_side.php page contains a Stored Cross-Site Scripting vulnerability. Specifically, the input fields for Full Name, Contact, and Address do not properly sanitize user input, allowing malicious scripts to be stored and executed on the page. This poses a security risk as it enables attackers to perform actions like stealing session cookies, redirecting users to malicious sites, or performing actions on behalf of the admin. |
|---|
| 원천 | ⚠️ https://docs.google.com/document/d/14ExrgXqPQlgvjw2poqNzYzAOi-C5tda-XBJF513yzag/edit?usp=sharing |
|---|
| 사용자 | R0ck3t (UID 70759) |
|---|
| 제출 | 2024. 06. 22. PM 07:15 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 06. 23. AM 11:34 (16 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 269485 [SourceCodester Clinic Queuing System 1.0 patient_side.php save_patient Full Name/Contact/Address 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|