162 matches found
CVE-2023-5796
A vulnerability was found in CodeAstro POS System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /setting of the component Logo Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...
CVE-2023-6774
A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input leads to cross site scripting. The...
CVE-2023-21499
Out-of-bounds write vulnerability in TACommunicationmposencryptpin in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code...
CVE-2023-2209
A vulnerability, which was classified as critical, was found in Campcodes Coffee Shop POS System 1.0. Affected is an unknown function of the file /admin/sales/viewdetails.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2023-23021
Cross Site Scripting XSS vulnerability in sourcecodester oretnom23 pos point sale system 1.0, allows attackers to execute arbitrary code via the code, name, and description inputs in file Main.php...
CVE-2023-2216
A vulnerability classified as problematic was found in Campcodes Coffee Shop POS System 1.0. Affected by this vulnerability is an unknown functionality of the file /classes/Users.php. The manipulation of the argument firstname leads to cross site scripting. The attack can be launched remotely. Th...
CVE-2023-2214
A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/sales/managesale.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...
CVE-2022-43086
Restaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via updatecustomer.php...
CVE-2022-43085
An arbitrary file upload vulnerability in addproduct.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2024-40392
SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 was discovered to contain a SQL injection vulnerability via the name parameter under addnew.php...
CVE-2024-40392
CVE-2024-40392 affects SourceCodester’s Pharmacy/Medical Store Point of Sale System (Source Code 1.0). Multiple connected sources confirm a SQL injection vulnerability exploitable via the name parameter in addnew.php. The root cause is an unsafely interpolated SQL query in that endpoint (no vendo...
CVE-2024-40392
SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 was discovered to contain a SQL injection vulnerability via the name parameter under addnew.php...
VulnCheck KEV: CVE-2023-2215
A vulnerability classified as critical has been found in Campcodes Coffee Shop POS System 1.0. Affected is an unknown function of the file /admin/user/manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2023-23021
Cross Site Scripting XSS vulnerability in sourcecodester oretnom23 pos point sale system 1.0, allows attackers to execute arbitrary code via the code, name, and description inputs in file Main.php...
PT-2024-11982 · Unknown · Sourcecodester Oretnom23 Pos Point Sale System
Name of the Vulnerable Software and Affected Versions: sourcecodester oretnom23 pos point sale system version 1.0 Description: The issue allows attackers to execute arbitrary code via the code, name, and description inputs in the file Main.php. This is a Cross Site Scripting XSS vulnerability...
CVE-2024-1268
A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
Design/Logic Flaw
A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
CVE-2024-1268 CodeAstro Restaurant POS System update_product.php unrestricted upload
A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
CVE-2024-1268
CVE-2024-1268 concerns CodeAstro Restaurant POS System 1.0. The vulnerability affects an unknown part of the file update_product.php, enabling an unrestricted upload that could be triggered remotely. Multiple sources (NVD, Red Hat, CVE listings, PRION) describe it as a critical issue with potenti...
CVE-2024-1268 CodeAstro Restaurant POS System update_product.php unrestricted upload
A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...