提交 #836639: imvks786 student_management_system 1.0 Stored Cross‑Site Scripting信息

标题imvks786 student_management_system 1.0 Stored Cross‑Site Scripting
描述The `add.php` script inserts a new student record by directly concatenating `$_POST` fields (such as `name`, `address`, `fname`, etc.) into an SQL query without any sanitisation: ```php $name = $_POST['name']; ... $sql = "INSERT INTO student (name,fname,...) values('$name','$fname',...)"; ``` Later, multiple pages display student data by echoing the raw database values directly into HTML without using htmlspecialchars() or any other output encoding: echo "<td>".$row["name"]."</td>"; echo "<td>".$row["address"]."</td>"; An attacker can submit a student entry containing a malicious payload (e.g., <svg/onload=alert(1337)>) in fields like name or address. When any user (admin, teacher, student) views the student list or profile, the injected script executes in their browser, leading to session theft, cookie hijacking, and further compromise.
来源⚠️ https://github.com/imvks786/student_management_system/issues/5
用户
 Marry_2026 (UID 98397)
提交2026-05-25 06時49分 (19 日前)
管理2026-06-07 21時53分 (14 days later)
状态已接受
VulDB条目369151 [imvks786 student_management_system 直到 9599b560ad3c3b83e75d328b76bedcd489ef1f46 /add.php name/address/fname 跨网站脚本]
积分20

上一步一览下一步

Do you need the next level of professionalism?

Upgrade your account now!