| 제목 | code-projects Local Storage Todo App 1 Cross Site Scripting |
|---|
| 설명 | In the directory 'Local_Storage_Todo_App_In_JS_With_Source_Code/js-todo-app/index.html' in admin account, there is an unrestricted cross-site scripting (XSS) vulnerability and injection attacks in the "Local Storage Todo App" system on the 'Add' parameter. This function will execute the user parameter without restriction. Malicious attackers can exploit this vulnerability to obtain sensitive information from clients.
script: <img/src/onerror=prompt(8)> |
|---|
| 원천 | ⚠️ https://code-projects.org/local-storage-todo-app-in-js-with-source-code/ |
|---|
| 사용자 | Fergod (UID 55882) |
|---|
| 제출 | 2025. 01. 02. PM 09:11 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 01. 04. PM 05:17 (2 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 290218 [code-projects Local Storage Todo App 1.0 /js-todo-app/index.html 추가하다 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|