| Title | Computer Parts Sales and Inventory System has Cross-Site Scriptin vulnerability(xss) vulnerability |
|---|
| Description | The Cross-Site Scriptin vulnerability exists in the customer file of the computer parts sales and inventory system system, which is caused by the insufficient filtering of user input by the Web application. Attackers take advantage of website vulnerabilities to inject malicious script code (usually including HTML code and client-side Javascript script) into web pages. When other users browse these pages, the malicious code will be executed, and the victim may take Cookie data theft, session hijacking, phishing, and other attacks.
Source Download:https://www.sourcecodester.com/php/14382/computer-parts-sales-and-inventory-system-using-phpmysql.html |
|---|
| Source | ⚠️ https://github.com/WhiteA1so/Cvetest/blob/main/1.pdf |
|---|
| User | xiaohua_ruilong (UID 41992) |
|---|
| Submission | 03/01/2023 13:45 (3 years ago) |
|---|
| Moderation | 03/01/2023 20:36 (7 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 222106 [SourceCodester Computer Parts Sales and Inventory System 1.0 customer.php FIRST_NAME/LAST_NAME/PHONE_NUMBER cross site scripting] |
|---|
| Points | 20 |
|---|