1296 matches found
CVE-2023-6774
A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input alertdocument.cookie leads to cross...
CVE-2023-6774
A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input alertdocument.cookie leads to cross...
CVE-2023-6773
A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accountscon/registeraccount of the component User Creation Handler. The manipulation of the argument accountty...
CVE-2023-6773
A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accountscon/registeraccount of the component User Creation Handler. The manipulation of the argument accountty...
Cross site scripting
A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input alertdocument.cookie leads to cross...
Improper access control
A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accountscon/registeraccount of the component User Creation Handler. The manipulation of the argument accountty...
CVE-2023-6774
CodeAstro POS and Inventory Management System 1.0 contains an XSS vulnerability in /accounts_con/register_account. The Username parameter can be injected with a script tag () to execute arbitrary script in the victim’s browser. Exploitation is possible remotely and the public disclosure of the ex...
CVE-2023-6773
CVE-2023-6773 affects CodeAstro POS and Inventory Management System 1.0, with an access control vulnerability in the User Creation Handler’s unknown function at /accounts_con/register_account. By supplying the value Admin to the parameter account_type , an attacker can trigger improper access con...
CVE-2023-6773 CodeAstro POS and Inventory Management System User Creation register_account access control
A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accountscon/registeraccount of the component User Creation Handler. The manipulation of the argument accountty...
PT-2023-32773 · Unknown · Codeastro Pos/Inventory Management System
Name of the Vulnerable Software and Affected Versions: CodeAstro POS and Inventory Management System version 1.0 Description: A vulnerability was found in the system, classified as problematic, affecting some unknown functionality of the file /accounts con/register account. The manipulation of th...
PT-2023-32772 · Unknown · Codeastro Pos/Inventory Management System
Name of the Vulnerable Software and Affected Versions: CodeAstro POS and Inventory Management System version 1.0 Description: A vulnerability has been found in the system, allowing for improper access controls. The issue is related to the manipulation of the account type argument with the input...
Inventory Management System Cross-Site Scripting Vulnerability
Inventory Management System is an inventory management system by stemword individual developers. A cross-site scripting vulnerability exists in CodeAstro POS and Inventory Management System version 1.0, which stems from an unknown section in /item/itemcon, leading to cross-site scripting via the...
Inventory Management System Cross-Site Scripting Vulnerability
Inventory Management System is an inventory management system by stemword individual developers. A cross-site scripting vulnerability exists in CodeAstro POS and Inventory Management System version 1.0, which stems from the presence of an unknown function in /accountscon/registeraccount that lead...
PT-2023-32774 · Unknown · Codeastro Pos/Inventory Management System
Name of the Vulnerable Software and Affected Versions: CodeAstro POS and Inventory Management System version 1.0 Description: A vulnerability was found in the CodeAstro POS and Inventory Management System, which has been classified as problematic. This issue affects an unknown part of the file...
CVE-2023-5796
A vulnerability was found in CodeAstro POS System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /setting of the component Logo Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...
CVE-2023-5795
A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The...
CVE-2023-5795
A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The...
Out-of-bounds
A vulnerability was found in CodeAstro POS System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /setting of the component Logo Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...
Out-of-bounds
A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The...
CVE-2023-5796
CVE-2023-5796 affects CodeAstro POS System 1.0, where an unknown functionality in the Logo Handler’s /setting file allows unrestricted upload. The issue can be triggered remotely and has been publicly disclosed. APT-PT security advisory notes this as a critical flaw in Logo Handler, enabling arbi...