2 matches found
CVE-2024-23896
creationtimestamp| type| source ---|---|--- 2024-01-26 12:21:53+00:00| seen| https://t.me/ctinow/174188...
CVE-2024-23896
CVE-2024-23896 affects Cups Easy (Purchase & Inventory) v1.0. The vulnerability is a Cross-Site Scripting (XSS) flaw caused by insufficient encoding of user-controlled inputs in the batchno parameter of /cupseasylive/stock.php, enabling an attacker to craft a URL that could steal session cookies ...