Skip to content
Permalink
main
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Go to file
 
 
Cannot retrieve contributors at this time

Canteen Management System v.1.0 POC

VENDOR: ADD-CUSTOMER-FORM

CANTEEN_MANAGEMENT_SYSTEM_ADD_CUSTOMER_IMAGE

VULNERABLE PARAMETER : name

PAYLOAD-USED : SRK_TEST"><script>alert(document.domain)</script>

CREDENTIAL_TO_USE

Username : mayuri.infospace@gmail.com
Password : rootadmin

STEPS_TO_REPRODUCE

1. LOGIN INTO THE APPLICATION BY GIVING THE ABOVE CREDENTIAL
2. THEN NAVIGATE TO `CUSTOMER TAB` ON THE `LEFT PANEL` AND  SELECT `Add Customer`  you will be redirected to this URL:  [http://localhost/youthappam/add_customer.php](http://localhost/youthappam/add_customer.php) 
3. Fill up the `Add Customer Form`  by adding default/random value except the `name` parameter, In the `name` parameter put the below Payload
4. Payload: `SRK_TEST"><script>alert(document.domain)</script>` 
5. You will see that name parameter is not validating and sanitizing our input/![CANTEEN_MANAGEMENT_SYSTEM_ADD_CUSTOMER_IMAGE](https://user-images.githubusercontent.com/98345027/215312387-8adc651d-9cc6-4f23-944e-5373b38260b4.png)
payload this lead to popo-up our XSS payload

VIDEO-POC

GOOGLE-DRIVE-LINK : VIDEO