Headline
CVE-2022-2684: CVE_demo/Apartment Visitor Management System-XSS.md at main · anx0ing/CVE_demo
A vulnerability has been found in SourceCodester Apartment Visitor Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /manage-apartment.php. The manipulation of the argument Apartment Number with the input <script>alert(1)</script> leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-205672.
Permalink
main
Switch branches/tags
Go to file
Go to file
Copy path
Copy permalink
Cannot retrieve contributors at this time
Apartment Visitor Management System-XSS Date: 2022-08/06 Exploit Author: [email protected] Vendor Homepage: Software Link: Version: 1.0 /manage-apartment.php
48 lines (19 sloc) 647 Bytes
Raw Blame
Open in GitHub Desktop
- Open with Desktop
- View raw
- Copy raw contents
- View blame
Apartment Visitor Management System-XSS****Date:
2022-08/06
Exploit Author:
Vendor Homepage:
https://www.sourcecodester.com
Software Link:
https://www.sourcecodester.com/php-apartment-visitor-management-system-source-code
Version:
1.0
/manage-apartment.php
in Add New Entry insert Cross Site Scripting(XSS) Code
Apartment NumberParameters have Cross Site Scripting(XSS)
POC
<script>alert(1)</script>