| Title | SourceCodester Leads Manager Tool July 30, 2024 Stored Cross-Site Scripting |
|---|
| Description | Persistent XSS (or Stored XSS) attack is one of the three major categories of XSS attacks, the others being Non-Persistent (or Reflected) XSS and DOM-based XSS. In general, XSS attacks are based on the victim’s trust in a legitimate, but vulnerable, website or web application.Online Leads Manager Tool does not filter the content correctly at the "notice" parameter, resulting in the generation of stored XSS. |
|---|
| Source | ⚠️ https://github.com/joinia/webray.com.cn/blob/main/Leads-Manager-Tool/leadmanagerxss.md |
|---|
| User | joinia (UID 24916) |
|---|
| Submission | 08/07/2024 10:39 (2 years ago) |
|---|
| Moderation | 08/09/2024 08:23 (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 274065 [SourceCodester Leads Manager Tool 1.0 Add Leads /endpoint/add-leads.php leads_name/phone_number cross site scripting] |
|---|
| Points | 19 |
|---|