| Title | agricultural school management system has cross-site script vulnerability |
|---|
| Description | There is a stored cross-site script vulnerability in the agricultural school management system. The vulnerability exists in the btn_functions.php file, which is caused by insufficient filtering of user input by the Web application. Attackers take advantage of website vulnerabilities to inject malicious script code (usually including HTML code and client-side Javascript script) into web pages. When other users browse these pages, the malicious code will be executed, and the victim may take Cookie data theft, session hijacking, phishing, and other attacks.
Source Down:https://code-projects.org/agro-school-management-system-in-php-with-source-code/ |
|---|
| Source | ⚠️ https://github.com/hotencode/CveHub/blob/main/agricultural%20school%20management%20system%20has%20cross-site%20script%20vulnerability.pdf |
|---|
| User | ZhangWang (UID 47877) |
|---|
| Submission | 06/02/2023 11:37 (3 years ago) |
|---|
| Moderation | 06/02/2023 14:46 (3 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 230566 [code-projects Agro-School Management System 1.0 btn_functions.php doAddQuestion cross site scripting] |
|---|
| Points | 20 |
|---|