| Title | Sourcecodester Warehouse Management System 1.0 Store XSS on barang.php |
|---|
| Description | Warehouse Management System Store XSS on barang.php.The potential risk of Cross-Site Scripting (XSS) arises because the values of the `$nama_barang` and `$merek` variables are directly inserted into the `value` attribute of HTML input fields without undergoing HTML entity encoding. This means that if these variables contain malicious JavaScript code, this code will be executed by the browser when the page loads. |
|---|
| Source | ⚠️ https://github.com/fubxx/CVE/blob/main/WarehouseManagementSystemXSS.md |
|---|
| User | LI YU (UID 67398) |
|---|
| Submission | 04/09/2024 03:27 (2 years ago) |
|---|
| Moderation | 04/10/2024 19:53 (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 260269 [SourceCodester Warehouse Management System 1.0 barang.php nama_barang/merek cross site scripting] |
|---|
| Points | 20 |
|---|