Submeter #475287: code-projects Online Book Shop 1.0 Cross Site Scriptinginformação

Títulocode-projects Online Book Shop 1.0 Cross Site Scripting
DescriçãoIn the /subcat.php file, an unrestricted Cross-Site Scripting (XSS) vulnerability and injection attacks exist, specifically targeting the $catnm paremeter. The function echo the user-supplied parameter without validation. Malicious attackers can leverage this vulnerability to access sensitive client information.
Fonte⚠️ https://gist.github.com/th4s1s/03262c6ce877137b61d745a2e4fe8a63
Utilizador
 lio346 (UID 79690)
Submissão06/01/2025 09h56 (há 1 Ano)
Moderação07/01/2025 08h51 (23 hours later)
EstadoAceite
Entrada VulDB290450 [code-projects Online Book Shop 1.0 /subcat.php catnm Script de Site Cruzado]
Pontos19

VoltarVisão GeralPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!