제출 #472190: PHPGurukul Land Record System 0.1 Cross Site Scripting정보

제목PHPGurukul Land Record System 0.1 Cross Site Scripting
설명In the directory '/landrecordsys/admin/aboutus.php' in admin account, there is an unrestricted cross-site scripting (XSS) stored vulnerability and injection attacks in the "Land Record System" system on the 'Page Description' parameter. This function will execute the user parameter without restriction. Malicious attackers can exploit this vulnerability to obtain sensitive information from clients. script: "><img src=x onerror=alert(document.location)>"</b>
원천⚠️ https://phpgurukul.com/land-record-system-using-php-and-mysql/
사용자
 Fergod (UID 55882)
제출2024. 12. 30. PM 05:24 (2 연령 ago)
모더레이션2024. 12. 31. AM 09:58 (17 hours later)
상태수락
VulDB 항목289833 [PHPGurukul Land Record System 1.0 /admin/aboutus.php Page Description 크로스 사이트 스크립팅]
포인트들20

Do you want to use VulDB in your project?

Use the official API to access entries easily!