提交 #431784: code-projects Blood Bank Management System 1.0 Cross Site Scripting信息

标题code-projects Blood Bank Management System 1.0 Cross Site Scripting
描述A Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the blood request functionality of the BloodBank Management System. This flaw occurs because the msg parameter is not properly sanitized before being rendered on the web page. This allows an attacker to inject malicious JavaScript code, which will be executed when the page is accessed. Successful exploitation can lead to session hijacking, redirection to phishing sites, or unauthorized actions on behalf of the victim. Additionally, this could be exploited for social engineering attacks or to spread malware.
来源⚠️ https://gist.github.com/higordiego/62ad5208270c67834d02818d6ba44126
用户
 c4ttr4ck (UID 75518)
提交2024-10-25 23時25分 (2 年前)
管理2024-10-26 15時44分 (16 hours later)
状态已接受
VulDB条目281960 [code-projects Blood Bank Management System 1.0 /bloodrequest.php msg 跨网站脚本]
积分20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!