4 matches found
CVE-2021-29387
Multiple stored cross-site scripting XSS vulnerabilities in Sourcecodester Equipment Inventory System 1.0 allow remote attackers to inject arbitrary javascript via any "Add" sections, such as Add Item , Employee and Position or others in the Name Parameters...
Sourcecodester Equipment Inventory System Cross-Site Scripting Vulnerability
Sourcecodester Equipment Inventory System is a Sourcecodester open source application. It is used to organize and track its equipment. Sourcecodester Equipment Inventory System 1.0 suffers from a cross-site scripting vulnerability that can be exploited by an attacker to inject arbitrary javascrip...
CVE-2021-29387
Multiple stored cross-site scripting XSS vulnerabilities in Sourcecodester Equipment Inventory System 1.0 allow remote attackers to inject arbitrary javascript via any "Add" sections, such as Add Item , Employee and Position or others in the Name Parameters...
CVE-2021-29387
Sourcecodester Equipment Inventory System 1.0 is affected by multiple stored cross-site scripting (XSS) vulnerabilities. The issue allows remote attackers to inject arbitrary JavaScript via the Name Parameters in the Add sections (e.g., Add Item, Employee, Position). Root cause is stored XSS, ena...