N/A

KLiK SocialMediaWebsite version 1.0.1 from msaad1999 has a reflected cross-site scripting (XSS) vulnerability which may allow remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'selector' or 'validator' parameters of 'create-new-pwd.php'.

N/A

N/A

KLiK SocialMediaWebsite 安全漏洞

KLiK SocialMediaWebsite是Muhammad Saad个人开发者的一个基于PHP的简单的社交媒体网站。 KLiK SocialMediaWebsite v1.0.1版本存在安全漏洞，该漏洞源于文件offer.php存在反射型跨站脚本（XSS）漏洞。

N/A

N/A