Lucene search
PRIOn knowledge basePRION:CVE-2021-30170HistoryMay 07, 2021 - 10:15 a.m.
Cross site scripting
2021-05-0710:15:00
PRIOn knowledge base
www.prio-n.com
1
Special characters of ERP POS customer profile page are not filtered in users’ input, which allow remote authenticated attackers can inject malicious JavaScript and carry out stored XSS (Stored Cross-site scripting) attacks, additionally access and manipulate customer’s information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| enterprise_resource_planning_point_of_sale_system | eq | 2013.10 |
Related
nvd
nvd
CVE-2021-30170
2021-05-07 10:15:08
cve
cve
CVE-2021-30170
2021-05-07 10:15:08
cvelist
cvelist
CVE-2021-30170 Jun-He Technology Ltd. ERP POS - Stored XSS-1
2021-05-07 00:00:00