| Название | code-projects Church Donation System 1.0 Cross Site Scripting |
|---|
| Описание | A stored XSS vulnerability was discovered in the edit_members.php endpoint of the web application. When submitting a POST request to this page with a specially crafted payload in the fname parameter, malicious JavaScript code is permanently stored and later executed whenever the member’s details are viewed. |
|---|
| Источник | ⚠️ https://github.com/enigma522/cve/issues/2 |
|---|
| Пользователь | Enigma522 (UID 88000) |
|---|
| Представление | 22.07.2025 14:56 (9 месяцы назад) |
|---|
| Модерация | 25.07.2025 09:25 (3 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 317581 [code-projects Church Donation System 1.0 /admin/edit_members.php fname межсайтовый скриптинг] |
|---|
| Баллы | 18 |
|---|