Отправить #162974: Local Service Search Engine Management System v1.0 /lssems/admin/ajax.php?action=save_area POST parameter area exists stored cross-site scripting vulnerabilityИнформация

НазваниеLocal Service Search Engine Management System v1.0 /lssems/admin/ajax.php?action=save_area POST parameter area exists stored cross-site scripting vulnerability
ОписаниеLocal Service Search Engine Management System v1.0 has stored cross-site scripting. Vulnerability File: /lssems/admin/ajax.php?action=save_area POST parameter area exists stored cross-site scripting vulnerability. Payload: id=&area=<script>alert(document.cookie)</script> Payload will trigger when a user visits on http://localhost/lssems/admin/index.php?page=areas
Источник⚠️ https://github.com/sikii7/CVE/blob/main/XSS.md
Пользователь
 sikii (UID 47840)
Представление31.05.2023 09:31 (3 лет назад)
Модерация31.05.2023 10:06 (35 minutes later)
Статуспринято
Запись VulDB230349 [SourceCodester Local Service Search Engine Management System 1.0 POST Parameter ajax.php?action=save_area межсайтовый скриптинг]
Баллы19

ПредыдущийОбзорДалее

Do you need the next level of professionalism?

Upgrade your account now!