| 제목 | code-projects Pharmacy Management System 1.0 Cross Site Scripting |
|---|
| 설명 | A stored XSS vulnerability has been identified in the Pharmacy Management System version 1.0, specifically within the medicine update functionality. This vulnerability arises due to the absence of proper input sanitization in the suppliers_name parameter. An attacker can inject malicious JavaScript code, which will be stored persistently in the database and executed every time the medicine record is accessed.
|
|---|
| 원천 | ⚠️ https://gist.github.com/higordiego/93343006341d3799de0cb8912cc328ec |
|---|
| 사용자 | c4ttr4ck (UID 75518) |
|---|
| 제출 | 2024. 10. 19. PM 06:09 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 10. 20. PM 08:49 (1 day later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 281023 [code-projects Pharmacy Management System 1.0 Manage Customer Page /manage_customer.php suppliers_name/address 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|