Submeter #199798: SourceCodester Inventory Management System 1.0 has a Persistent Cross Site Scripting vulnerability in suppliar_data.phpinformação

TítuloSourceCodester Inventory Management System 1.0 has a Persistent Cross Site Scripting vulnerability in suppliar_data.php
Descriçãohttps://github.com/TheCyberDiver/Public-Disclosures-CVE-/blob/main/Inventory-Management-System-XSS.md The link above is a detailed report on the issue. Software Software: Inventory Management System 1.0 Software Link: https://www.sourcecodester.com/php/16741/free-and-open-source-inventory-management-system-php-source-code.html Vulnerability Type: XSS Attack Type: Remote Vendor of Product: Sourcecodester Description A vulnerability has been found in SourceCodester Inventory Management System 1.0 and classified as critical. SourceCodester Inventory Management System 1.0 has a Persistent Cross Site Scripting vulnerability in suppliar_data.php. The manipulation of the argument name or company leads to malicious Javascript being rendered. Remote attackers can leverage this to affect any other users that visit that portion of the application.
Fonte⚠️ Stored XSS // <img src=x onerror=alert(1)>
Utilizador
 error404unknown (UID 53361)
Submissão25/08/2023 18h45 (há 3 anos)
Moderação26/08/2023 17h51 (23 hours later)
EstadoAceite
Entrada VulDB238153 [SourceCodester Inventory Management System 1.0 suppliar_data.php name/company Script de Site Cruzado]
Pontos17

VoltarVisão GeralPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!