Free And Open Source Inventory Management System@1.0 Security Vulnerabilities and Issues — Free And Open Source Inventory Management System@1.0 CVE List

Lucene search

Free And Open Source Inventory Management System ProjectFree And Open Source Inventory Management System1.0

8 matches found

CVE•added 2023/08/25 8:15 p.m.•37 views

CVE-2023-39707

A stored cross-site scripting (XSS) vulnerability in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Add Expense parameter under the Expense section.

5.4CVSS5.3AI score0.00192EPSS

CVE•added 2023/08/28 7:15 p.m.•37 views

CVE-2023-39709

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add Member section.

6.1CVSS6AI score0.00115EPSS

CVE•added 2023/08/28 2:15 p.m.•34 views

CVE-2023-39708

6.1CVSS5.8AI score0.00125EPSS

CVE•added 2023/09/07 3:15 p.m.•32 views

CVE-2023-39711

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Subtotal and Paidbill parameters under the Add New Put section.

6.1CVSS6AI score0.00115EPSS

CVE•added 2023/09/08 6:15 p.m.•28 views

CVE-2023-39712

6.1CVSS6AI score0.00207EPSS

CVE•added 2023/09/01 6:15 p.m.•25 views

CVE-2023-39714

6.1CVSS6AI score0.00125EPSS

CVE•added 2023/09/01 2:15 p.m.•20 views

CVE-2023-39710

6.1CVSS6AI score0.00136EPSS

CVE•added 2024/01/30 1:15 a.m.•20 views

CVE-2023-51813

Cross Site Request Forgery (CSRF) vulnerability in Free Open-Source Inventory Management System v.1.0 allows a remote attacker to execute arbitrary code via the staff_list parameter in the index.php component.

6.5CVSS7AI score0.00166EPSS