[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Life Insurance Management System 1.0 - Multiple Stored XSS Vulnerabilities

Author
Arnav Tripathy
Risk
[
Security Risk High
]
0day-ID
0day-ID-35652
Category
web applications
Date add
08-01-2021
Platform
php
# Exploit Title: Life Insurance Management System 1.0 - Multiple Stored XSS
# Exploit Author: Arnav Tripathy
# Vendor Homepage: https://www.sourcecodester.com
# Software Link: https://www.sourcecodester.com/php/14665/life-insurance-management-system-php-full-source-code.html
# Version: 1.0
# Tested on: linux / Lamp

Click on add payment once logged in. Put <script>alert(1)</script> and so on in all parameters. You will notice popup once you navigate to payments.

#  0day.today [2024-11-16]  #