CVE-2020-5308 – Dairy Farm Shop Management System 1.0 Cross Site Scripting

https://notcve.org/view.php?id=CVE-2020-5308

PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to XSS, as demonstrated by the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName parameter in add-product.php. PHPGurukul Dairy Farm Shop Management System versión 1.0, es vulnerable a un ataque de tipo XSS, como es demostrado por los parámetros category y CategoryCode en el archivo add-category.php, el parámetro CompanyName en el archivo add-company.php y el parámetro ProductName en el archivo add-product.php. Dairy Farm Shop Management System version 1.0 suffers from a persistent cross site scripting vulnerability. • http://packetstormsecurity.com/files/155861/Dairy-Farm-Shop-Management-System-1.0-Cross-Site-Scripting.html https://cinzinga.github.io/CVE-2020-5307-5308 https://phpgurukul.com/dairy-farm-shop-management-system-using-php-and-mysql • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •