CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

8 matches found

NVD•added 2026/02/13 4:16 p.m.•3 views

CVE-2025-70094

A cross-site scripting XSS vulnerability in the Generate Item Barcode function of OpenSourcePOS v3.4.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Item Category parameter...

6.5CVSS0.00162EPSS

Exploits1References3

OSV•added 2026/02/13 4:16 p.m.•3 views

CVE-2025-70094

A cross-site scripting XSS vulnerability in the Generate Item Barcode function of OpenSourcePOS v3.4.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Item Category parameter...

6.5CVSS5.6AI score0.00162EPSS

Exploits1References3

CNNVD•added 2026/02/13 12:0 a.m.•2 views

opensourcepos 安全漏洞

OpenSourcePOS is an open-source point-of-sale system. Version 3.4.1 of OpenSourcePOS contains a security vulnerability. This vulnerability stems from insufficient input validation for the Item Category parameter in the Generate Item Barcode function, which may lead to cross-site scripting attacks...

6.5CVSS5.6AI score0.00162EPSS

Exploits1References3

Cvelist•added 2026/02/13 12:0 a.m.•28 views

CVE-2025-70094

A cross-site scripting XSS vulnerability in the Generate Item Barcode function of OpenSourcePOS v3.4.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Item Category parameter...

Exploits1References3

CVE•added 2026/02/13 12:0 a.m.•13 views

CVE-2025-70094

OpenSourcePOS v3.4.1 contains a cross-site scripting (XSS) vulnerability in the Generate Item Barcode function. The issue allows injection of arbitrary scripts/HTML via the Item Category parameter, enabling potential impact on affected users’ sessions when the payload is processed or rendered by ...

6.5CVSS5.5AI score0.00162EPSS

Exploits1References3Affected Software1

ATTACKERKB•added 2026/02/13 12:0 a.m.•1 views

CVE-2025-70094

A cross-site scripting XSS vulnerability in the Generate Item Barcode function of OpenSourcePOS v3.4.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Item Category parameter...

5.5AI score0.00162EPSS

Exploits1References4

Vulnrichment•added 2026/02/13 12:0 a.m.•4 views

CVE-2025-70094

A cross-site scripting XSS vulnerability in the Generate Item Barcode function of OpenSourcePOS v3.4.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Item Category parameter...

5.5AI score0.00162EPSS

Exploits1References3

Positive Technologies•added 2026/02/13 12:0 a.m.•8 views

PT-2026-7996

A cross-site scripting XSS vulnerability in the Generate Item Barcode function of OpenSourcePOS v3.4.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Item Category parameter...

6.5CVSS5.5AI score0.00162EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by