CVE-2025-68147 opensourcepos has a Cross-site Scripting vulnerability

Open Source Point of Sale opensourcepos is a web based point of sale application written in PHP using CodeIgniter framework. Starting in version 3.4.0 and prior to version 3.4.2, a Stored Cross-Site Scripting XSS vulnerability exists in the "Return Policy" configuration field. The application doe...

Vulnerability of the `getReadReceipts` method in the server-based corporate messaging system that supports file and video conferences. Chat, which allows attackers to expose sensitive information.

The vulnerability of the getReadReceipts method in the server-based corporate messaging system that supports file and video conferences. Chat involves insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to disclose protected information...

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management, and so on, a collection of management software, is seamlessly integrated into a management suite.Oracle...