Submeter #426884: code-projects Pharmacy Management System 1.0 Basic Cross Site Scriptinginformação

Títulocode-projects Pharmacy Management System 1.0 Basic Cross Site Scripting
DescriçãoA **stored XSS vulnerability** has been identified in the **Pharmacy Management System** version 1.0, specifically in the **supplier management update functionality**. This vulnerability occurs because the input in the `address` parameter is not properly sanitized before being saved to the database. This flaw allows attackers to inject malicious JavaScript code that will persist in the system and execute whenever the affected supplier record is accessed.
Fonte⚠️ https://gist.github.com/higordiego/bc051be4a8c6b6641578cad533742aab
Utilizador
 c4ttr4ck (UID 75518)
Submissão19/10/2024 18h06 (há 2 anos)
Moderação20/10/2024 20h49 (1 day later)
EstadoAceite
Entrada VulDB281022 [code-projects Pharmacy Management System 1.0 Manage Supplier Page /manage_supplier.php address Script de Site Cruzado]
Pontos20

Do you need the next level of professionalism?

Upgrade your account now!