2 matches found
CVE-2023-39708
CVE-2023-39708 corresponds to a stored cross-site scripting (XSS) vulnerability in Free and Open Source Inventory Management System v1.0. The issue arises from injecting arbitrary web scripts/HTML via the Add New parameter under the New Buy section. Affected component is the web application; the ...
CVE-2023-39708
A stored cross-site scripting XSS vulnerability in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Add New parameter under the New Buy section...