| 제목 | www.sourcecodester.com Vehicle Management System 1.0 Cross-site Scripting (XSS) |
|---|
| 설명 | The id parameter in the confirmbooking.php file of the Vehicle Management System is not strictly verified for user input, resulting in the input data can be combined with Sql statements, resulting in the user input information displayed on the page without filtering. As a result, Cross-site Scripting (XSS) exists. Attackers can exploit the vulnerability, threatening user security.
Source DownLoad:https://www.sourcecodester.com/php/14404/vehicle-management-system-phpmysql.html |
|---|
| 원천 | ⚠️ https://github.com/Keyand/Multi-Restaurant-Table-Reservation-System-Search/blob/main/Vehicle%20Management%20System%20confirmbooking.php%20has%20Cross-site%20Scripting%20(XSS).pdf |
|---|
| 사용자 | kkey (UID 81096) |
|---|
| 제출 | 2025. 03. 07. AM 01:52 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 03. 16. PM 02:29 (10 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 299876 [SourceCodester Vehicle Management System 1.0 /confirmbooking.php 아이디 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|