| Title | rems Product Management System Using PHP and MySQL 1.0 Reflected XSS |
|---|
| Description | Product Management System Using PHP and MySQL Reflected-XSS POC is susceptible to a significant security vulnerability that arises from insufficient protection on the 'supplier_name' & 'supplier_contact' parameters in the supplier.php & /endpoint/add_supplier.php file. Attackers can inject malicious JavaScript code into website databases, and when victim users extract and load this JavaScript code, they will be attacked. |
|---|
| Source | ⚠️ https://github.com/PrecursorYork/Product-Management-System-Using-PHP-and-MySQL-Reflected-XSS-POC/blob/main/README.md |
|---|
| User | PrecursoreYork (UID 62524) |
|---|
| Submission | 02/06/2024 06:20 (2 years ago) |
|---|
| Moderation | 02/06/2024 09:50 (4 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 253012 [SourceCodester Product Management System 1.0 /supplier.php supplier_name/supplier_contact cross site scripting] |
|---|
| Points | 20 |
|---|