Submeter #312302: Sourcecodester Laundry Management System v1.0 Cross-Site Scriptinginformação

TítuloSourcecodester Laundry Management System v1.0 Cross-Site Scripting
DescriçãoLaundry Management System Store XSS (/ci_laundry/karyawan/edit) .This code snippet is potentially vulnerable to Cross-Site Scripting (XSS) attacks. The issue lies in the direct output of the `$karyawan->alamat` variable's value into the `value` attribute using `<?php echo $karyawan->alamat ?>`. If `$karyawan->alamat` contains malicious JavaScript code, then this code will be executed when the page loads and renders this `input` tag.
Fonte⚠️ https://github.com/fubxx/CVE/blob/main/LaundryManagementSystemXSS.md
Utilizador
 LI YU (UID 67398)
Submissão08/04/2024 09h15 (há 2 anos)
Moderação08/04/2024 14h33 (5 hours later)
EstadoAceite
Entrada VulDB259744 [SourceCodester Laundry Management System 1.0 /karyawan/edit karyawan Script de Site Cruzado]
Pontos20

VoltarVisão GeralPróximo

Want to know what is going to be exploited?

We predict KEV entries!