| tiêu đề | Gym management system project ClickJacking exists on multiple pages |
|---|
| Mô tả | [College Attendance System (CAS)](https://www.sourcecodester.com/visual-basic-net/15538/college-attendance-system-cas.html) Posted by SourceCodester is vulnerable to ClickJacking.
Attackers can use this vulnerability to deceive users to click, causing losses to individuals and platforms.
Clickjacking was introduced in 2008 by Internet security experts Robert Hansen and Jeremiah Grossman. It is a kind of visual deception. On the web side, it is an iframe that nests a transparent and invisible page, allowing users to click the location where the attacker wants to deceive the user to click without knowing it.
There are roughly two ways to exploit clickjacking. One is that the attacker uses a transparent iframe to overlay on a web page, and then induces the user to operate on the page. At this time, the user will click on the transparent iframe without knowing it. page, so as to achieve a certain purpose of the attacker, such as: brushing clicks, defrauding attention, etc.; second, the attacker uses a picture to cover the web page to block the meaning of the original position of the web page. |
|---|
| Nguồn | ⚠️ https://github.com/Blythe-LU/Record4/blob/main/Gym%20management%20system%20project%20-%20ClickJacking%20exists%20on%20multiple%20pages.md |
|---|
| Người dùng | blythe (UID 30714) |
|---|
| Đệ trình | 12/08/2022 11:16 (cách đây 4 những năm) |
|---|
| Kiểm duyệt | 12/08/2022 12:46 (1 hour later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 206246 [SourceCodester Gym Management System nâng cao đặc quyền] |
|---|
| điểm | 20 |
|---|