| 标题 | Online Computer and Laptop StoreV1.0 Cross site scripting attack at system name setting |
|---|
| 描述 | This project is entitled Online Computer and Laptop Store. This web application was developed to provide an online platform for a certain computer store or business possible customers for exploring and ordering the products.Version number: v1.0
Source code online address:https://www.sourcecodester.com/php/16397/online-computer-and-laptop-store-using-php-and-mysql-source-code-free-download.html
At the administrator system settings, there is a storage based cross site scripting attack that will affect all users accessing the backend management of the system, as the vulnerability lies at the system name and will execute as soon as they enter the backend!
|
|---|
| 来源 | ⚠️ https://github.com/boyi0508/Online-Computer-and-Laptop-Store/blob/main/Cross%20site%20scripting%20attack%20at%20system%20name%20setting.pdf |
|---|
| 用户 | haicheng.zhang (UID 38987) |
|---|
| 提交 | 2023-04-08 04時43分 (3 年前) |
|---|
| 管理 | 2023-04-08 08時31分 (4 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 225348 [SourceCodester Online Computer and Laptop Store 1.0 /admin/?page=system_info System Name 跨网站脚本] |
|---|
| 积分 | 20 |
|---|