Gửi #472190: PHPGurukul Land Record System 0.1 Cross Site Scriptingthông tin

tiêu đềPHPGurukul Land Record System 0.1 Cross Site Scripting
Mô tảIn the directory '/landrecordsys/admin/aboutus.php' in admin account, there is an unrestricted cross-site scripting (XSS) stored vulnerability and injection attacks in the "Land Record System" system on the 'Page Description' parameter. This function will execute the user parameter without restriction. Malicious attackers can exploit this vulnerability to obtain sensitive information from clients. script: "><img src=x onerror=alert(document.location)>"</b>
Nguồn⚠️ https://phpgurukul.com/land-record-system-using-php-and-mysql/
Người dùng
 Fergod (UID 55882)
Đệ trình30/12/2024 17:24 (cách đây 2 những năm)
Kiểm duyệt31/12/2024 09:58 (17 hours later)
Trạng tháiđược chấp nhận
Mục VulDB289833 [PHPGurukul Land Record System 1.0 /admin/aboutus.php Page Description Tập lệnh chéo trang]
điểm20

Want to know what is going to be exploited?

We predict KEV entries!