Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Free And Open Source Inventory Management System Security Vulnerabilities - November

cve
cve

CVE-2023-39707

A stored cross-site scripting (XSS) vulnerability in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Add Expense parameter under the Expense section.

5.4CVSS

5.3AI Score

0.001EPSS

2023-08-25 08:15 PM
27
cve
cve

CVE-2023-39708

A stored cross-site scripting (XSS) vulnerability in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Add New parameter under the New Buy section.

6.1CVSS

5.8AI Score

0.001EPSS

2023-08-28 02:15 PM
21
cve
cve

CVE-2023-39709

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add Member section.

6.1CVSS

6AI Score

0.001EPSS

2023-08-28 07:15 PM
18
cve
cve

CVE-2023-39710

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add Customer section.

6.1CVSS

6AI Score

0.001EPSS

2023-09-01 02:15 PM
14
cve
cve

CVE-2023-39711

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Subtotal and Paidbill parameters under the Add New Put section.

6.1CVSS

6AI Score

0.001EPSS

2023-09-07 03:15 PM
20
cve
cve

CVE-2023-39712

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add New Put section.

6.1CVSS

6AI Score

0.001EPSS

2023-09-08 06:15 PM
19
cve
cve

CVE-2023-39714

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add New Member section.

6.1CVSS

6AI Score

0.001EPSS

2023-09-01 06:15 PM
20
cve
cve

CVE-2023-51813

Cross Site Request Forgery (CSRF) vulnerability in Free Open-Source Inventory Management System v.1.0 allows a remote attacker to execute arbitrary code via the staff_list parameter in the index.php component.

6.5CVSS

7AI Score

0.001EPSS

2024-01-30 01:15 AM
14