Lucene search
K

4 matches found

NVD
NVD
added 2022/10/31 9:15 p.m.11 views

CVE-2022-40288

The application was vulnerable to an authenticated Stored Cross-Site Scripting XSS in the user profile data fields, which could be leveraged to escalate privileges within and compromise any account that views their user profile...

9CVSS0.00621EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/31 8:5 p.m.20 views

CVE-2022-40288 Stored cross-site scripting in PHP Point of Sale version 19.0, by PHP Point of Sale, LLC via messaging functionality

The application was vulnerable to an authenticated Stored Cross-Site Scripting XSS in the user profile data fields, which could be leveraged to escalate privileges within and compromise any account that views their user profile...

8AI score0.00621EPSS
Exploits0References1
CVE
CVE
added 2022/10/31 8:5 p.m.52 views

CVE-2022-40288

The CVE-2022-40288 entry refers to an authenticated Stored Cross-Site Scripting (XSS) vulnerability in PHP Point of Sale, specifically affecting version 19.0 by PHP Point of Sale, LLC. The flaw resides in user profile data fields and can be leveraged to escalate privileges within the application ...

9CVSS8.2AI score0.00621EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/31 8:5 p.m.5 views

CVE-2022-40288 Stored cross-site scripting in PHP Point of Sale version 19.0, by PHP Point of Sale, LLC via messaging functionality

The application was vulnerable to an authenticated Stored Cross-Site Scripting XSS in the user profile data fields, which could be leveraged to escalate privileges within and compromise any account that views their user profile...

5.8AI score0.00621EPSS
Exploits0References1
Rows per page
Query Builder