Submeter #362873: SourceCodester Clinic Queuing System using PHP and SQlite3 1.0 Cross Site Scriptinginformação

TítuloSourceCodester Clinic Queuing System using PHP and SQlite3 1.0 Cross Site Scripting
DescriçãoThe patient_side.php page contains a Stored Cross-Site Scripting vulnerability. Specifically, the input fields for Full Name, Contact, and Address do not properly sanitize user input, allowing malicious scripts to be stored and executed on the page. This poses a security risk as it enables attackers to perform actions like stealing session cookies, redirecting users to malicious sites, or performing actions on behalf of the admin.
Fonte⚠️ https://docs.google.com/document/d/14ExrgXqPQlgvjw2poqNzYzAOi-C5tda-XBJF513yzag/edit?usp=sharing
Utilizador
 R0ck3t (UID 70759)
Submissão22/06/2024 19h15 (há 2 anos)
Moderação23/06/2024 11h34 (16 hours later)
EstadoAceite
Entrada VulDB269485 [SourceCodester Clinic Queuing System 1.0 patient_side.php save_patient Full Name/Contact/Address Script de Site Cruzado]
Pontos20

VoltarVisão GeralPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!