Campcodes Retro Basketball Shoes V1.0 后台XSS漏洞

漏洞关键信息 Title campcodes Retro Basketball Shoes Online Store V1.0 cross site scripting Description During the security review of "Retro Basketball Shoes Online Store", a critical XSS vulnerability was found in the "/admin/admin_running.php" file. The vulnerability results from insufficient user input validation and output encoding of the "product_name" parameter, allowing attackers to inject malicious script code. This enables attackers to execute arbitrary scripts in the victim's browser, steal sensitive information, and perform operations on the victim's behalf. Immediate remedial measures are needed to ensure system security and protect user data. Source ![](https://github.com/laosijivul/cve/issues/1) User 🛡️ laosiji (UID 92549) Submission 11/12/2025 06:06 AM (8 days ago) Moderation 11/19/2025 03:34 PM (7 days later) Status Accepted VulDB Entry ![](Campcodes Retro Basketball Shoes Online Store 1.0 /admin/admin_running.php product_name cross site scripting) Points 20

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

Campcodes Retro Basketball Shoes V1.0 后台XSS漏洞

目标达成感谢每一位支持者 — 我们达成了 100% 目标！