Books_Manager 1.0 存储型XSS漏洞分析

Vulnerability Title: Books_Manager 1.0 Stored XSS Vulnerability Description: The interface has a stored XSS vulnerability. Attackers can pass the parameter via the product name, allowing the server to execute JS code, resulting in an XSS storage vulnerability. Vulnerability Class File: Books_Manager/books_center/add_book_check.php Reproduction Steps: After entering the provided code in the product name and submitting, the JavaScript code was successfully executed. Source: https://blog.y1fan.work/2026/01/13/%E5%AD%98%E5%82%A8%E5%9E%8Bxss/ User: y11fan (UID 94467) Submission Date: 01/13/2026 09:00 AM Moderation Date: 01/26/2026 03:53 PM Status: Accepted VulDB Entry: 342873 ([iJason-Liu Books_Manager up to 298ba736387ca37810466349af13a0fdf828e99c add_book_check.php mark cross site scripting]) Points: 20

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

Books_Manager 1.0 存储型XSS漏洞分析

目标达成感谢每一位支持者 — 我们达成了 100% 目标！