CVE-2020-23835

Published
View on NVD ↗
CVSS v3
6.4
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT

Description

A Reflected Cross-Site Scripting (XSS) vulnerability in the index.php login-portal webpage of SourceCodester Tailor Management System v1.0 allows remote attackers to harvest keys pressed by an unauthenticated victim who clicks on a malicious URL and begins typing.

boku7/tailorMS-rXSS-Keylogger
boku7/tailorMS-rXSS-Keylogger
Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Tailor Management System v1.0 allows remote attackers to harvest keys pressed via unauthenticated victim clicking malicious URL and typing.
GitHubGitHub
24