| 标题 | itsourcecode Online Blood Bank Management System 1.0 Cross Site Scripting |
|---|
| 描述 | In Version 1.0 of the Online Blood Bank Management application, Stored Cross-Site Scripting can be performed from the /request.php page via unknown functionality of the request.php component. An attacker can supply malicious commands to be stored and executed when a user navigates to the 'viewrequest.php' page or when an admin navigates to the /admin/request.php page. |
|---|
| 来源 | ⚠️ https://github.com/cl4irv0yance/CVEs/issues/1 |
|---|
| 用户 | mdsmith49 (UID 72657) |
|---|
| 提交 | 2024-07-29 18時45分 (2 年前) |
|---|
| 管理 | 2024-07-30 19時55分 (1 day later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 273185 [itsourcecode Online Blood Bank Management System 1.0 Send Blood Request Page /request.php Address/bloodgroup 跨网站脚本] |
|---|
| 积分 | 18 |
|---|