2 matches found
CVE-2026-33730
Open Source Point of Sale opensourcepos is a web based point of sale application written in PHP using CodeIgniter framework. Prior to version 3.4.2, an Insecure Direct Object Reference IDOR vulnerability allows an authenticated low-privileged user to access the password change functionality of...
CVE-2025-46742
CVE-2025-46742 affects Schweitzer Engineering Laboratories products (e.g., SEL Blueframe OS and related SEL RTAC software). The root cause is an unchanged password that allows users who are required to change their password to still access system information before completing the change. Document...