Nixon-H/PHP-Stored-XSS-Bypass-Real-Escape
GitHub
Releases0
A High-severity (7.6) Stored XSS vulnerability. The system uses mysqli_real_escape_string for sanitization, which fails to stop HTML injection. Attackers can inject malicious scripts into product fields to steal administrator session cookies and perform account takeovers.
Collections containing this project
Showing collections based on your access.
This project is not in any collections you can view.