Submit #287716: keerti1924 Secret-Coder-PHP-Project 1.0 Cross Site Scriptinginfo

Titlekeerti1924 Secret-Coder-PHP-Project 1.0 Cross Site Scripting
DescriptionLogin page of Secret-Coder-PHP-Project is vulnerable to XSS by modifying cookies emailcookie and passwordcookie making the website vulnerable on 2 instances.
Source⚠️ https://github.com/smurf-reigz/security/blob/main/proof-of-concepts/keerti1924%20%5BSecret-Coder-PHP-Project%20XSS%5D%20on%20login.php%20via%20arbitrary%20cookies.md
User
 reiginald (UID 64219)
Submission02/25/2024 13:16 (2 years ago)
Moderation03/07/2024 15:34 (11 days later)
StatusAccepted
VulDB entry256036 [keerti1924 Secret-Coder-PHP-Project 1.0 Login Page /login.php emailcookie/passwordcookie cross site scripting]
Points15

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!