28 matches found
EUVD-2019-13566
Malware in sbrugna...
EUVD-2019-13567
Malware in sbrugna...
EUVD-2017-16415
Malware in sbrugna...
EUVD-2019-13565
Malware in sbrugna...
CVE-2019-3958
Insufficient output sanitization in WallacePOS 1.4.3 allows a remote, authenticated attacker to conduct persistent cross-site scripting XSS attacks via a crafted sales transaction...
CVE-2019-3959
Cross-site request forgery in WallacePOS 1.4.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link...
CVE-2019-3960
Unrestricted upload of file with dangerous type in WallacePOS 1.4.3 allows a remote, authenticated attacker to execute arbitrary code by uploading a malicious PHP file...
WallacePOS Cross-Site Request Forgery Vulnerability
WallacePOS is an open source, web-based POS and business management system. The system is compatible with standard POS hardware such as receipt printers, cash drawers and barcode scanners. A cross-site request forgery vulnerability exists in WallacePOS version 1.4.3. The vulnerability stems from...
WallacePOS Cross-Site Scripting Vulnerability (CNVD-2019-25985)
WallacePOS is an open source, web-based POS and business management system. The system is compatible with standard POS hardware such as receipt printers, cash drawers and barcode scanners. A cross-site scripting vulnerability exists in WallacePOS version 1.4.3. The vulnerability stems from the WE...
WallacePOS Code Issue Vulnerability
WallacePOS is a web-based open source point of sale and retail management system. A code issue vulnerability exists in WallacePOS 1.4.3, which can be exploited by a remote authenticated attacker to execute arbitrary code by uploading a malicious PHP file...
CVE-2019-3960
Unrestricted upload of file with dangerous type in WallacePOS 1.4.3 allows a remote, authenticated attacker to execute arbitrary code by uploading a malicious PHP file...
CVE-2019-3958
Insufficient output sanitization in WallacePOS 1.4.3 allows a remote, authenticated attacker to conduct persistent cross-site scripting XSS attacks via a crafted sales transaction...
CVE-2019-3959
Cross-site request forgery in WallacePOS 1.4.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link...
CVE-2019-3958
Insufficient output sanitization in WallacePOS 1.4.3 allows a remote, authenticated attacker to conduct persistent cross-site scripting XSS attacks via a crafted sales transaction...
CVE-2019-3960
Unrestricted upload of file with dangerous type in WallacePOS 1.4.3 allows a remote, authenticated attacker to execute arbitrary code by uploading a malicious PHP file...
CVE-2019-3959
Cross-site request forgery in WallacePOS 1.4.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link...
Cross site request forgery (csrf)
Cross-site request forgery in WallacePOS 1.4.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link...
Cross site scripting
Insufficient output sanitization in WallacePOS 1.4.3 allows a remote, authenticated attacker to conduct persistent cross-site scripting XSS attacks via a crafted sales transaction...
CVE-2019-3958
Insufficient output sanitization in WallacePOS 1.4.3 allows a remote, authenticated attacker to conduct persistent cross-site scripting XSS attacks via a crafted sales transaction...
CVE-2019-3958
The CVE-2019-3958 entry corresponds to WallacePOS 1.4.3 and describes insufficient output sanitization that enables a remote, authenticated attacker to perform persistent cross-site scripting (XSS) via a crafted sales transaction. The vulnerability is documented across multiple feeds (NVD, Red Ha...