N/A

Book Store Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in /bsms_ci/index.php/book. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the writer parameter.

N/A

N/A

Book Store Management System 跨站脚本漏洞

Book Store Management System是Carlo Montero个人开发者的一个在线书店系统。 Book Store Management System v1.0版本存在跨站脚本漏洞，该漏洞源于在/bsms_ci/index.php/book中发现包含跨站点脚本（XSS）漏洞。攻击者利用该漏洞通过注入writer参数的特制载荷执行任意web脚本或HTML。

N/A

N/A