Lucene search
K

10 matches found

NVD
NVD
added 2023/06/30 2:15 a.m.26 views

CVE-2023-36347

A broken authentication mechanism in the endpoint excel.php of POS Codekop v2.0 allows unauthenticated attackers to download selling data...

7.5CVSS7.7AI score0.34293EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/06/30 2:15 a.m.4 views

CVE-2023-36347

A broken authentication mechanism in the endpoint excel.php of POS Codekop v2.0 allows unauthenticated attackers to download selling data...

7.5CVSS7.2AI score0.34293EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/06/30 12:0 a.m.35 views

CVE-2023-36347

A broken authentication mechanism in the endpoint excel.php of POS Codekop v2.0 allows unauthenticated attackers to download selling data...

7.8AI score0.34293EPSS
Exploits1References2
CVE
CVE
added 2023/06/30 12:0 a.m.68 views

CVE-2023-36347

POS Codekop v2.0 is affected by a broken authentication flaw in the endpoint excel.php that allows unauthenticated access to download selling data. The issue stems from improper authentication/session handling, enabling an attacker to retrieve sensitive data without valid login. Impact is describ...

7.5CVSS7.6AI score0.34293EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/30 12:0 a.m.14 views

CVE-2023-36347

A broken authentication mechanism in the endpoint excel.php of POS Codekop v2.0 allows unauthenticated attackers to download selling data...

7.4AI score0.34293EPSS
Exploits1References2
NVD
NVD
added 2023/06/23 8:15 p.m.21 views

CVE-2023-36345

A Cross-Site Request Forgery CSRF in POS Codekop v2.0 allows attackers to escalate privileges...

8.8CVSS8.9AI score0.01049EPSS
Exploits1References2
Prion
Prion
added 2023/06/23 8:15 p.m.18 views

Cross site request forgery (csrf)

A Cross-Site Request Forgery CSRF in POS Codekop v2.0 allows attackers to escalate privileges...

6.8CVSS8.8AI score0.01049EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/06/23 8:15 p.m.21 views

Cross site scripting

POS Codekop v2.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the nmmember parameter at print.php...

5.8CVSS6AI score0.05295EPSS
Exploits4References3Affected Software1
CVE
CVE
added 2023/06/23 12:0 a.m.53 views

CVE-2023-36346

POS Codekop v2.0 has a reflected XSS vulnerability in the print.php endpoint through the nm_member parameter. Affects the web application’s print.php handling, enabling injection of script code that could be executed in users’ browsers. The Nuclei template and Red Hat/NVD references confirm the i...

6.1CVSS6AI score0.05295EPSS
Exploits4References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/23 12:0 a.m.8 views

CVE-2023-36345

A Cross-Site Request Forgery CSRF in POS Codekop v2.0 allows attackers to escalate privileges...

7.5AI score0.01049EPSS
Exploits1References2
Rows per page
Query Builder