Submit #158731: Dental Clinic Appointment Reservation System v1.0 /APR/admin/service.php POST parameter service has stored cross-site scripting vulnerabilityinfo

TitleDental Clinic Appointment Reservation System v1.0 /APR/admin/service.php POST parameter service has stored cross-site scripting vulnerability
DescriptionDental Clinic Appointment Reservation System v1.0 has stored cross-site scripting. Vulnerability File: /APR/admin/service.php POST parameter "service" exists stored cross-site scripting vulnerability Payload: id=1&service=<script>alert(document.cookie)</script>&price=700.00&edit= Payload will trigger when a user visits on http://localhost/APR/admin/service.php
Source⚠️ https://github.com/daxian2022/CVE/blob/main/XSS.md
User
 DaXian.Li (UID 46802)
Submission05/20/2023 06:28 (3 years ago)
Moderation05/20/2023 08:49 (2 hours later)
StatusAccepted
VulDB entry229598 [SourceCodester Dental Clinic Appointment Reservation System 1.0 POST Parameter /admin/service.php service cross site scripting]
Points19

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!