Online Invoicing System@* Security Vulnerabilities and Issues — Online Invoicing System@* CVE List

Lucene search

BigprofOnline Invoicing System*

4 matches found

CVE•added 2023/11/30 2:15 p.m.•24 views

CVE-2023-6426

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/invoices_view.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user ...

6.3CVSS5.4AI score0.00139EPSS

CVE•added 2023/11/30 2:15 p.m.•24 views

CVE-2023-6429

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/clients_view.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user t...

6.3CVSS5.4AI score0.00191EPSS

CVE•added 2023/11/30 2:15 p.m.•22 views

CVE-2023-6428

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/items_view.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user to ...

6.3CVSS5.4AI score0.00139EPSS

CVE•added 2023/11/30 2:15 p.m.•19 views

CVE-2023-6427

6.3CVSS5.4AI score0.00191EPSS