2 matches found
CVE-2017-7388
A Cross-Site Scripting XSS was discovered in 'wallacepos v1.4.1'. The vulnerability exists due to insufficient filtration of user-supplied data token passed to the 'wallacepos-master/myaccount/resetpassword.php' URL. An attacker could execute arbitrary HTML and script code in a browser in the...
CVE-2017-7388
CVE-2017-7388 affects wallacepos v1.4.1. The issue is a Cross-Site Scripting (XSS) vulnerability caused by insufficient filtering of user-supplied data (token) passed to wallacepos-master/myaccount/resetpassword.php. An attacker could execute arbitrary HTML/script in a browser context of the vuln...