| Название | code-projects simple-crud-functionality-in-php 1.0 Cross Site Scripting |
|---|
| Описание | there are unrestricted cross site scripting attacks and injection attacks in the simple-crud-functionality-in-php in index.php. The controllable parameters are as follows: descr parameter and title parameter. This function will execute the user parameter without restriction into the echo statement. Malicious attackers can exploit this vulnerability to obtain sensitive information from clients. |
|---|
| Источник | ⚠️ https://github.com/LamentXU123/cve/blob/main/xss3.md |
|---|
| Пользователь | LamentXU (UID 78142) |
|---|
| Представление | 03.12.2024 15:35 (2 лет назад) |
|---|
| Модерация | 05.12.2024 09:47 (2 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 286978 [code-projects Simple CRUD Functionality 1.0 /index.php newtitle/newdescr межсайтовый скриптинг] |
|---|
| Баллы | 19 |
|---|