| Название | Online Computer and Laptop StoreV1.0 Cross site scripting attack at system name setting |
|---|
| Описание | This project is entitled Online Computer and Laptop Store. This web application was developed to provide an online platform for a certain computer store or business possible customers for exploring and ordering the products.Version number: v1.0
Source code online address:https://www.sourcecodester.com/php/16397/online-computer-and-laptop-store-using-php-and-mysql-source-code-free-download.html
At the administrator system settings, there is a storage based cross site scripting attack that will affect all users accessing the backend management of the system, as the vulnerability lies at the system name and will execute as soon as they enter the backend!
|
|---|
| Источник | ⚠️ https://github.com/boyi0508/Online-Computer-and-Laptop-Store/blob/main/Cross%20site%20scripting%20attack%20at%20system%20name%20setting.pdf |
|---|
| Пользователь | haicheng.zhang (UID 38987) |
|---|
| Представление | 08.04.2023 04:43 (3 лет назад) |
|---|
| Модерация | 08.04.2023 08:31 (4 hours later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 225348 [SourceCodester Online Computer and Laptop Store 1.0 /admin/?page=system_info System Name межсайтовый скриптинг] |
|---|
| Баллы | 20 |
|---|