Lucene search
K

162 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:33 a.m.10 views

CVE-2023-5796

A vulnerability was found in CodeAstro POS System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /setting of the component Logo Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...

8.8CVSS6.9AI score0.00714EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 3:44 a.m.9 views

CVE-2023-6774

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input leads to cross site scripting. The...

5.4CVSS6.2AI score0.00679EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 3:10 a.m.5 views

CVE-2023-21499

Out-of-bounds write vulnerability in TACommunicationmposencryptpin in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitrary code...

8.2CVSS7.1AI score0.0019EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:3 a.m.4 views

CVE-2023-2209

A vulnerability, which was classified as critical, was found in Campcodes Coffee Shop POS System 1.0. Affected is an unknown function of the file /admin/sales/viewdetails.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS7.8AI score0.00607EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:42 a.m.4 views

CVE-2023-23021

Cross Site Scripting XSS vulnerability in sourcecodester oretnom23 pos point sale system 1.0, allows attackers to execute arbitrary code via the code, name, and description inputs in file Main.php...

6.1CVSS6.6AI score0.00454EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:50 a.m.5 views

CVE-2023-2216

A vulnerability classified as problematic was found in Campcodes Coffee Shop POS System 1.0. Affected by this vulnerability is an unknown functionality of the file /classes/Users.php. The manipulation of the argument firstname leads to cross site scripting. The attack can be launched remotely. Th...

6.1CVSS6.2AI score0.00649EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:48 a.m.7 views

CVE-2023-2214

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/sales/managesale.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...

7.5CVSS7.4AI score0.00607EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:9 a.m.7 views

CVE-2022-43086

Restaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via updatecustomer.php...

4.9CVSS8.3AI score0.00726EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:9 a.m.10 views

CVE-2022-43085

An arbitrary file upload vulnerability in addproduct.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...

7.2CVSS7.9AI score0.01056EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/07/16 12:0 a.m.21 views

CVE-2024-40392

SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 was discovered to contain a SQL injection vulnerability via the name parameter under addnew.php...

0.00502EPSS
Exploits1References1
CVE
CVE
added 2024/07/16 12:0 a.m.52 views

CVE-2024-40392

CVE-2024-40392 affects SourceCodester’s Pharmacy/Medical Store Point of Sale System (Source Code 1.0). Multiple connected sources confirm a SQL injection vulnerability exploitable via the name parameter in addnew.php. The root cause is an unsafely interpolated SQL query in that endpoint (no vendo...

9.8CVSS8.5AI score0.00502EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/16 12:0 a.m.20 views

CVE-2024-40392

SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 was discovered to contain a SQL injection vulnerability via the name parameter under addnew.php...

8.4AI score0.00502EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2024/06/26 12:0 a.m.2 views

VulnCheck KEV: CVE-2023-2215

A vulnerability classified as critical has been found in Campcodes Coffee Shop POS System 1.0. Affected is an unknown function of the file /admin/user/manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS5.7AI score0.01637EPSS
Exploits1References1
OSV
OSV
added 2024/05/01 7:15 p.m.4 views

CVE-2023-23021

Cross Site Scripting XSS vulnerability in sourcecodester oretnom23 pos point sale system 1.0, allows attackers to execute arbitrary code via the code, name, and description inputs in file Main.php...

6.1CVSS6.1AI score0.00454EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/05/01 12:0 a.m.3 views

PT-2024-11982 · Unknown · Sourcecodester Oretnom23 Pos Point Sale System

Name of the Vulnerable Software and Affected Versions: sourcecodester oretnom23 pos point sale system version 1.0 Description: The issue allows attackers to execute arbitrary code via the code, name, and description inputs in the file Main.php. This is a Cross Site Scripting XSS vulnerability...

6.1CVSS7AI score0.00454EPSS
Exploits1References5
NVD
NVD
added 2024/02/07 2:15 a.m.29 views

CVE-2024-1268

A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

9.8CVSS7.2AI score0.00592EPSS
Exploits0References3
Prion
Prion
added 2024/02/07 2:15 a.m.22 views

Design/Logic Flaw

A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

6.5CVSS7.1AI score0.00592EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/07 1:31 a.m.15 views

CVE-2024-1268 CodeAstro Restaurant POS System update_product.php unrestricted upload

A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

6.5CVSS6.9AI score0.00592EPSS
Exploits0References3
CVE
CVE
added 2024/02/07 1:31 a.m.40 views

CVE-2024-1268

CVE-2024-1268 concerns CodeAstro Restaurant POS System 1.0. The vulnerability affects an unknown part of the file update_product.php, enabling an unrestricted upload that could be triggered remotely. Multiple sources (NVD, Red Hat, CVE listings, PRION) describe it as a critical issue with potenti...

9.8CVSS9.4AI score0.00592EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/02/07 1:31 a.m.31 views

CVE-2024-1268 CodeAstro Restaurant POS System update_product.php unrestricted upload

A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file updateproduct.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

6.5CVSS9.7AI score0.00592EPSS
Exploits0References3
Rows per page
Query Builder