Cross site scripting in SourceCodester Tailor Management System v1.0

Cross site scripting in Tailor Management Heading link

Multiple cross-site scripting vulnerabilities are present in SourceCodester Tailor Management System v1.0. The following is detailed information about these vulnerabilities:

Files: partedit.php, customeredit.php

Parameter: eid

Files: editmeasurement.php, addpayment.php

Parameter: id

File: index.php

Parameter: error

Above vulnerabilities are published at CVE-2021-40260

This vulnerability was detected as part of the DARPA CHESS program

Reference: https://www.sourcecodester.com/sites/default/files/download/Warren%20Daloyan/tailor.zip

Systems and Internet Security Lab

UIC Computer Science

Cross site scripting in SourceCodester Tailor Management System v1.0

Cross site scripting in Tailor Management Heading link

Cross site scripting in SourceCodester Tailor Management System v1.0

Cross site scripting in Tailor Management Heading link Copy link

Cross site scripting in Tailor Management Heading link