| tiêu đề | SOURCECODESTER house rental management system 1.0 Cross-Site Scripting |
|---|
| Mô tả | Stored Cross-Site Scripting (XSS) affecting house rental management system at "invoices" endpoint and leading to the theft of user sessions, an attacker could exploit vulnerabilities in the web application by injecting scripts that capture users' session tokens or credentials. This allows the attacker to hijack user sessions, gaining unauthorized access to sensitive information or performing actions on behalf of the compromised users. |
|---|
| Nguồn | ⚠️ https://drive.google.com/file/d/1xEenTDcXwNYdOxY8kdQ142nRnbcHrTRv/view?usp=sharing |
|---|
| Người dùng | Strik3r (UID 61057) |
|---|
| Đệ trình | 11/01/2024 14:34 (cách đây 2 những năm) |
|---|
| Kiểm duyệt | 12/01/2024 13:49 (23 hours later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 250609 [SourceCodester House Rental Management System 1.0 Manage Invoice Details Hóa đơn Tập lệnh chéo trang] |
|---|
| điểm | 20 |
|---|