| Название | Sourcecodester Laundry Management System v1.0 Cross-Site Scripting |
|---|
| Описание | Laundry Management System Store XSS (/ci_laundry/karyawan/edit) .This code snippet is potentially vulnerable to Cross-Site Scripting (XSS) attacks. The issue lies in the direct output of the `$karyawan->alamat` variable's value into the `value` attribute using `<?php echo $karyawan->alamat ?>`. If `$karyawan->alamat` contains malicious JavaScript code, then this code will be executed when the page loads and renders this `input` tag. |
|---|
| Источник | ⚠️ https://github.com/fubxx/CVE/blob/main/LaundryManagementSystemXSS.md |
|---|
| Пользователь | LI YU (UID 67398) |
|---|
| Представление | 08.04.2024 09:15 (2 лет назад) |
|---|
| Модерация | 08.04.2024 14:33 (5 hours later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 259744 [SourceCodester Laundry Management System 1.0 /karyawan/edit karyawan межсайтовый скриптинг] |
|---|
| Баллы | 20 |
|---|