CVE-2023-6775 CodeAstro POS and Inventory Management System item_con cross site scripting

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /item/itemcon. The manipulation of the argument itemname leads to cross site scripting. It is possible to initiate the attack remotely. T...

CVE-2023-6774

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input alertdocument.cookie leads to cross...

CVE-2023-6774

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input alertdocument.cookie leads to cross...

CVE-2023-6773

A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accountscon/registeraccount of the component User Creation Handler. The manipulation of the argument accountty...

Cross site scripting

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input alertdocument.cookie leads to cross...

Improper access control

A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accountscon/registeraccount of the component User Creation Handler. The manipulation of the argument accountty...

CVE-2023-6773 CodeAstro POS and Inventory Management System User Creation register_account access control

A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accountscon/registeraccount of the component User Creation Handler. The manipulation of the argument accountty...

PT-2023-32773 · Unknown · Codeastro Pos/Inventory Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro POS and Inventory Management System version 1.0 Description: A vulnerability was found in the system, classified as problematic, affecting some unknown functionality of the file /accounts con/register account. The manipulation of th...

Inventory Management System Cross-Site Scripting Vulnerability

Inventory Management System is an inventory management system by stemword individual developers. A cross-site scripting vulnerability exists in CodeAstro POS and Inventory Management System version 1.0, which stems from an unknown section in /item/itemcon, leading to cross-site scripting via the...

Inventory Management System Cross-Site Scripting Vulnerability

Inventory Management System is an inventory management system by stemword individual developers. A cross-site scripting vulnerability exists in CodeAstro POS and Inventory Management System version 1.0, which stems from the presence of an unknown function in /accountscon/registeraccount that lead...

CVE-2023-5796

A vulnerability was found in CodeAstro POS System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /setting of the component Logo Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...

CVE-2023-5795

A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The...

CVE-2023-5795

A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The...

Out-of-bounds

A vulnerability was found in CodeAstro POS System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /setting of the component Logo Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...

Out-of-bounds

A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The...

CVE-2023-5796

CVE-2023-5796 affects CodeAstro POS System 1.0, where an unknown functionality in the Logo Handler’s /setting file allows unrestricted upload. The issue can be triggered remotely and has been publicly disclosed. APT-PT security advisory notes this as a critical flaw in Logo Handler, enabling arbi...

CVE-2023-5795 CodeAstro POS System Profile Picture profil unrestricted upload

A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The...

CVE-2023-5795 CodeAstro POS System Profile Picture profil unrestricted upload

A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The...