Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:35 p.m.5 views

CVE-2021-29387

Multiple stored cross-site scripting XSS vulnerabilities in Sourcecodester Equipment Inventory System 1.0 allow remote attackers to inject arbitrary javascript via any "Add" sections, such as Add Item , Employee and Position or others in the Name Parameters...

5.4CVSS6AI score0.00774EPSS
Exploits1References1
CNVD
CNVD
added 2021/05/11 12:0 a.m.3 views

Sourcecodester Equipment Inventory System Cross-Site Scripting Vulnerability

Sourcecodester Equipment Inventory System is a Sourcecodester open source application. It is used to organize and track its equipment. Sourcecodester Equipment Inventory System 1.0 suffers from a cross-site scripting vulnerability that can be exploited by an attacker to inject arbitrary javascrip...

5.4CVSS6.2AI score0.00774EPSS
Exploits1References1
NVD
NVD
added 2021/04/28 2:15 p.m.19 views

CVE-2021-29387

Multiple stored cross-site scripting XSS vulnerabilities in Sourcecodester Equipment Inventory System 1.0 allow remote attackers to inject arbitrary javascript via any "Add" sections, such as Add Item , Employee and Position or others in the Name Parameters...

5.4CVSS0.00774EPSS
Exploits1References2
CVE
CVE
added 2021/04/28 1:22 p.m.33 views

CVE-2021-29387

Sourcecodester Equipment Inventory System 1.0 is affected by multiple stored cross-site scripting (XSS) vulnerabilities. The issue allows remote attackers to inject arbitrary JavaScript via the Name Parameters in the Add sections (e.g., Add Item, Employee, Position). Root cause is stored XSS, ena...

5.4CVSS5.4AI score0.00774EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder