| 标题 | phpgurukul.com Hospital Management System 08 Nov 2022 Stored XSS |
|---|
| 描述 | Upon successful login, the XSS payload (`<img src="x" onerror=alert(document.cookie)>`) in the "First Name" field should trigger an alert box displaying the user's cookies. This indicates that the Stored XSS vulnerability exists, and the payload executed in the context of another user's session.
this is the t
link of vulnerable application https://phpgurukul.com/hospital-management-system-in-php/ |
|---|
| 来源 | ⚠️ https://drive.google.com/file/d/1Mqs0mmxxmKLrFLHekPke5bZnzMHvnrFm/view?usp=sharing |
|---|
| 用户 | sharath213 (UID 60748) |
|---|
| 提交 | 2023-12-29 09時01分 (3 年前) |
|---|
| 管理 | 2023-12-29 20時46分 (12 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 249357 [PHPGurukul Hospital Management System 1.0 registration.php First Name 跨网站脚本] |
|---|
| 积分 | 20 |
|---|