| 标题 | PHPGurukul Maid Hiring Management System 1.00.0 Cross Site Scripting |
|---|
| 描述 | In the file '/mhms/admin/profile.php', there is an unrestricted cross-site scripting (XSS) vulnerability and injection attacks in the "Maid Hiring Management System" system on the 'Admin name' parameter. This function will execute the user parameter without restriction. Malicious attackers can exploit this vulnerability to obtain sensitive information from clients. |
|---|
| 来源 | ⚠️ https://phpgurukul.com/maid-hiring-management-system-using-php-and-mysql/ |
|---|
| 用户 | Fergod (UID 55882) |
|---|
| 提交 | 2024-12-28 03時47分 (1 年前) |
|---|
| 管理 | 2024-12-28 17時16分 (13 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 289709 [PHPGurukul Maid Hiring Management System 1.0 /admin/profile.php 名称 跨网站脚本] |
|---|
| 积分 | 18 |
|---|