| Название | Sourcecodester Warehouse Management System 1.0 Store XSS on barang.php |
|---|
| Описание | Warehouse Management System Store XSS on barang.php.The potential risk of Cross-Site Scripting (XSS) arises because the values of the `$nama_barang` and `$merek` variables are directly inserted into the `value` attribute of HTML input fields without undergoing HTML entity encoding. This means that if these variables contain malicious JavaScript code, this code will be executed by the browser when the page loads. |
|---|
| Источник | ⚠️ https://github.com/fubxx/CVE/blob/main/WarehouseManagementSystemXSS.md |
|---|
| Пользователь | LI YU (UID 67398) |
|---|
| Представление | 09.04.2024 03:27 (2 лет назад) |
|---|
| Модерация | 10.04.2024 19:53 (2 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 260269 [SourceCodester Warehouse Management System 1.0 barang.php nama_barang/merek межсайтовый скриптинг] |
|---|
| Баллы | 20 |
|---|