Enterprise Resource Planning Point Of Sale System@2013.10 Security Vulnerabilities and Issues — Enterprise Resource Planning Point Of Sale System@2013.10 CVE List

Lucene search

JunhetecEnterprise Resource Planning Point Of Sale System2013.10

2 matches found

CVE•added 2021/05/07 10:15 a.m.•27 views

CVE-2021-30170

Special characters of ERP POS customer profile page are not filtered in users’ input, which allow remote authenticated attackers can inject malicious JavaScript and carry out stored XSS (Stored Cross-site scripting) attacks, additionally access and manipulate customer’s information.

5.4CVSS4.7AI score0.00149EPSS

CVE•added 2021/05/07 10:15 a.m.•24 views

CVE-2021-30171

Special characters of ERP POS news page are not filtered in users’ input, which allow remote authenticated attackers can inject malicious JavaScript and carry out stored XSS (Stored Cross-site scripting) attacks, additionally access and manipulate customer’s information.

5.4CVSS4.7AI score0.00149EPSS