Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:26 p.m.10 views

CVE-2026-39380

Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework. Prior to 3.4.3, a Stored Cross-Site Scripting XSS vulnerability exists in the Stock Locations configuration feature. The application fails to properly sanitize user input supplied throug...

5.4CVSS5.6AI score0.00162EPSS
Exploits1References1
NVD
NVD
added 2026/04/07 8:16 p.m.4 views

CVE-2026-39380

Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework. Prior to 3.4.3, a Stored Cross-Site Scripting XSS vulnerability exists in the Stock Locations configuration feature. The application fails to properly sanitize user input supplied throug...

5.4CVSS0.00162EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/07 7:49 p.m.2 views

CVE-2026-39380

Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework. Prior to 3.4.3, a Stored Cross-Site Scripting XSS vulnerability exists in the Stock Locations configuration feature. The application fails to properly sanitize user input supplied throug...

5.4CVSS6AI score0.00162EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/04/07 7:49 p.m.5 views

EUVD-2026-19916

Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework. Prior to 3.4.3, a Stored Cross-Site Scripting XSS vulnerability exists in the Stock Locations configuration feature. The application fails to properly sanitize user input supplied throug...

5.4CVSS6AI score0.00162EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.6 views

PT-2026-31007

Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework. Prior to 3.4.3, a Stored Cross-Site Scripting XSS vulnerability exists in the Stock Locations configuration feature. The application fails to properly sanitize user input supplied throug...

5.4CVSS6AI score0.00162EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-17515

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00305EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-19749

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00358EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/11 4:4 p.m.9 views

CVE-2025-47463

Missing Authorization vulnerability in Fahad Mahmood Stock Locations for WooCommerce stock-locations-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Stock Locations for WooCommerce: from n/a through = 2.8.6...

7.1CVSS5.9AI score0.00305EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/09 12:0 a.m.9 views

WordPress plugin Stock Locations for WooCommerce security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

7.1CVSS5.8AI score0.00305EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/06/09 12:0 a.m.4 views

PT-2025-24502 · Woocommerce · Stock Locations For Woocommerce

Name of the Vulnerable Software and Affected Versions: Stock Locations for WooCommerce versions 2.8.6 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploitation of incorrectly configured access control security levels. Recommendations: For...

7.1CVSS6.8AI score0.00305EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 7:33 a.m.6 views

CVE-2024-22153

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fahad Mahmood & Alexandre Faustino Stock Locations for WooCommerce allows Stored XSS.This issue affects Stock Locations for WooCommerce: from n/a through 2.5.9...

5.9CVSS6.5AI score0.00358EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/31 12:0 a.m.2 views

WordPress plugin Stock Locations for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...

5.9CVSS6.8AI score0.00358EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/31 12:0 a.m.5 views

PT-2024-19240 · Woocommerce · Stock Locations For Woocommerce

Name of the Vulnerable Software and Affected Versions: Stock Locations for WooCommerce versions 2.5.9 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks...

5.9CVSS5.5AI score0.00358EPSS
Exploits0References7
Patchstack
Patchstack
added 2024/01/16 12:0 a.m.20 views

WordPress Stock Locations for WooCommerce Plugin <= 2.5.9 is vulnerable to Cross Site Scripting (XSS)

Software Stock Locations for WooCommerce Type Plugin Vulnerable versions = 2.5.9 Fixed in 2.6.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-22153 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID cf59ffb809c9 Credits Mika Required privileg...

5.9CVSS6.6AI score0.00358EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder