CVE-2025-70093

An issue in OpenSourcePOS v3.4.1 allows attackers to execute arbitrary code via returning a crafted AJAX response...

PT-2026-8002

Name of the Vulnerable Software and Affected Versions OpenSourcePOS version 3.4.1 Description An issue exists in OpenSourcePOS version 3.4.1 that permits attackers to execute arbitrary code by returning a specially crafted AJAX response. The issue involves manipulating the response from an AJAX...