Nixon-H/PHP-Stored-XSS-Bypass-Real-Escape
GitHub
Releases0
A High-severity (7.6) Stored XSS vulnerability. The system uses mysqli_real_escape_string for sanitization, which fails to stop HTML injection. Attackers can inject malicious scripts into product fields to steal administrator session cookies and perform account takeovers.
Subscribe above to receive notifications when new versions are released.
| Version | Date | Stability Stability is determined by the version string and my be inaccurate. |
|---|
PreviousNext