Simple Cashiering System Project: >> Simple Cashiering System >> 1.0 Security Vulnerabilities
A vulnerability, which was classified as problematic, has been found in Sourcecodester Simple Cashiering System. This issue affects some unknown processing of the component User Account Handler. The manipulation of the argument fullname leads to cross site scripting. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-213455.
CVSS Score
3.5
EPSS Score
0.001
Published
2022-11-11
Multiple SQL Injection vulnerabilities exist in Sourcecodester Simple Cashiering System (POS) 1.0 via the (1) Product Code in the pos page in cashiering. (2) id parameter in manage_products and the (3) t paramater in actions.php.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-11-03