boku7/tailorMS-rXSS-Keylogger

Releases0

Stars24

Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Tailor Management System v1.0 allows remote attackers to harvest keys pressed via unauthenticated victim clicking malicious URL and typing.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-23835 ↗	Sep 1, 2020Tuesday, 1 September 2020, 17:15	6.4 MEDIUM	4.3 MEDIUM
A Reflected Cross-Site Scripting (XSS) vulnerability in the index.php login-portal webpage of SourceCodester Tailor Management System v1.0 allows remote attackers to harvest keys pressed by an unauthenticated victim who clicks on a malicious URL and begins typing.