CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Equipment Inventory System Project: >> Equipment Inventory System Security Vulnerabilities

CVE-2021-29387

Multiple stored cross-site scripting (XSS) vulnerabilities in Sourcecodester Equipment Inventory System 1.0 allow remote attackers to inject arbitrary javascript via any "Add" sections, such as Add Item , Employee and Position or others in the Name Parameters.

CVSS Score

5.4

EPSS Score

0.001

Published

2021-04-28

Page 1

Vulnerabilities

Vulnerable Software

Equipment Inventory System Project: >> Equipment Inventory System Security Vulnerabilities

Products

Pricing

Contact Us