| 제목 | code-projects.org Simple Content Management System in php 1.0 Cross Site Scripting |
|---|
| 설명 | A Stored XSS vulnerability exists in Simple Content Management System 1.0. The News Title field in /web/admin/welcome.php does not sanitize input before storing it in the database. The payload executes on /web/index.php for every visitor, allowing cookie theft and session hijacking. |
|---|
| 원천 | ⚠️ https://github.com/Xmyronn/simple-cms-stored-xss-news-title |
|---|
| 사용자 | imad alvi (UID 97088) |
|---|
| 제출 | 2026. 04. 05. AM 03:22 (19 날 ago) |
|---|
| 모더레이션 | 2026. 04. 13. AM 10:24 (8 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 357107 [code-projects Simple Content Management System 1.0 /web/admin/welcome.php News Title 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 18 |
|---|