A cross-site scripting vulnerability exists in PartKeepr version 1.4.0, which is an inventory management software designed primarily for electronic components. The vulnerability stems from a security issue in the name field in /api/part_categories. An attacker could exploit this vulnerability to inject malicious JavaScript programs.
CPE | Name | Operator | Version |
---|---|---|---|
partkeepr partkeepr | eq | 1.4.0 |