| Название | phpgurukul.com Hospital Management System 08 Nov 2022 Stored XSS |
|---|
| Описание | Upon successful login, the XSS payload (`<img src="x" onerror=alert(document.cookie)>`) in the "First Name" field should trigger an alert box displaying the user's cookies. This indicates that the Stored XSS vulnerability exists, and the payload executed in the context of another user's session.
this is the t
link of vulnerable application https://phpgurukul.com/hospital-management-system-in-php/ |
|---|
| Источник | ⚠️ https://drive.google.com/file/d/1Mqs0mmxxmKLrFLHekPke5bZnzMHvnrFm/view?usp=sharing |
|---|
| Пользователь | sharath213 (UID 60748) |
|---|
| Представление | 29.12.2023 09:01 (3 лет назад) |
|---|
| Модерация | 29.12.2023 20:46 (12 hours later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 249357 [PHPGurukul Hospital Management System 1.0 registration.php First Name межсайтовый скриптинг] |
|---|
| Баллы | 20 |
|---|