Abacre: >> Retail Point Of Sale Security Vulnerabilities
Abacre Retail Point of Sale 14.0.0.396 is vulnerable to content-based blind SQL injection. The vulnerability exists in the Search function of the Orders page.
CVSS Score
6.5
EPSS Score
0.0
Published
2026-01-20
Abacre Retail Point of Sale 14.0.0.396 is affected by a stored cross-site scripting (XSS) vulnerability in the Clients module. The application fails to properly sanitize user-supplied input stored in the Name and Surname fields. An attacker can insert malicious HTML or script content into these fields, which, persisted in the database.
CVSS Score
6.1
EPSS Score
0.0
Published
2026-01-20