| Título | rems CRUD (Create, Read, Update, Delete) Without Page Reload 1.0 Reflected XSS |
|---|
| Descrição | CRUD-without-refresh-reload Reflected XSS POC is susceptible to a significant security vulnerability that arises from insufficient protection on the 'username' & 'city' parameters in the fetch_data.php & add_user.php file. Attackers can inject malicious JavaScript code into website databases, and when victim users extract and load this JavaScript code, they will be attacked. |
|---|
| Fonte | ⚠️ https://github.com/PrecursorYork/crud-without-refresh-reload-Reflected_XSS-POC/blob/main/README.md |
|---|
| Utilizador | PrecursoreYork (UID 62524) |
|---|
| Submissão | 02/02/2024 12h01 (há 2 anos) |
|---|
| Moderação | 02/02/2024 20h31 (8 hours later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 252782 [SourceCodester CRUD without Page Reload 1.0 fetch_data.php username/city Script de Site Cruzado] |
|---|
| Pontos | 20 |
|---|