Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTMLCVELIST:CVE-2022-40290
HistoryOct 31, 2022 - 8:09 p.m.

CVE-2022-40290 Reflected cross-site scripting in PHP Point of Sale version 19.0, by PHP Point of Sale, LLC.

2022-10-3120:09:06
CWE-79
TML
www.cve.org
5
cve-2022-40290
reflected cross-site scripting
php point of sale.

EPSS

0.001

Percentile

31.3%

JSON

The application was vulnerable to an unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability in the barcode generation functionality, allowing attackers to generate an unsafe link that could compromise users.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "PHP Point of Sale",
    "vendor": "PHP Point of Sale LLC",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  }
]

Related

cve 1
prion 1
nvd 1
cve
cve
CVE-2022-40290
2022-10-31 21:15:12
prion
prion
Cross site scripting
2022-10-31 21:15:00
nvd
nvd
CVE-2022-40290
2022-10-31 21:15:12

EPSS

0.001

Percentile

31.3%

JSON
Related for CVELIST:CVE-2022-40290
cve1prion1nvd1