제출 #691622: ecommerce-website-master web 1 XSS vulnerability정보

제목ecommerce-website-master web 1 XSS vulnerability
설명The ecommerce-website-master project contains a reflected Cross-Site Scripting (XSS) vulnerability in includes/header_menu.php. The error GET parameter is output without proper encoding, allowing injection of arbitrary JavaScript. PoC: http://localhost/ecommerce-website-master/includes/header_menu.php?error=<script>alert('xss')</script> Impact: Remote attacker can execute JavaScript in victims’ browsers.
원천⚠️ https://github.com/dream357/report/blob/main/ecommerce-website.docx
사용자
 dream123 (UID 92387)
제출2025. 11. 08. PM 03:59 (8 개월 ago)
모더레이션2025. 11. 29. PM 09:55 (21 days later)
상태수락
VulDB 항목333797 [winston-dsouza Ecommerce-Website 까지 87734c043269baac0b4cfe9664784462138b1b2e GET Parameter header_menu.php 오류 크로스 사이트 스크립팅]
포인트들20

이전개요다음

Interested in the pricing of exploits?

See the underground prices here!