The Stock Management System has a CSRF vulnerability
In use_ In add.php, add user information and send it to us via post request_ transac. Php, and then stored the new user information in the database without cookie or session verification or referer verification, resulting in a CSRF vulnerability. Similarly, there is a storage XSS vulnerability here
The Stock Management System has a CSRF vulnerability
CSRF POC:
Poc is to insert data with user name ace into the database
The text was updated successfully, but these errors were encountered: