| 标题 | Alphaware E-Commerce System has XSS vulnerability |
|---|
| 描述 | Enter the administrator background page
http://127.0.0.1/cve/admin/stockin.php?id=3
There is an xss vulnerability in the stockin.php file
Enter XSS payload
'"><script>alert(/xss/)</script>
The page successfully pops up XSS, the vulnerability exists
Please see github for details
https://github.com/895515845/Alphaware-E-Commerce-System/blob/main/Alphaware_xss.md
The system download link
https://www.sourcecodester.com/php/11676/alphaware-simple-e-commerce-system.html |
|---|
| 用户 | Anonymous User |
|---|
| 提交 | 2022-08-05 18時21分 (4 年前) |
|---|
| 管理 | 2022-08-05 20時57分 (3 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 205670 [SourceCodester Alphaware Simple E-Commerce System stockin.php 标识符 跨网站脚本] |
|---|
| 积分 | 17 |
|---|