Arajawat007 - Security Researcher - Exploit Intelligence Platform

CVE-2023-39707 NOMISEC MEDIUM NO CODE

Free And Open Source Inventory Management System - XSS

A stored cross-site scripting (XSS) vulnerability in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Add Expense parameter under the Expense section.

CVSS 5.4

View Code

CVE-2023-39708 NOMISEC MEDIUM NO CODE

Free And Open Source Inventory Management System - XSS

A stored cross-site scripting (XSS) vulnerability in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Add New parameter under the New Buy section.

CVSS 6.1

View Code

CVE-2023-39709 NOMISEC MEDIUM NO CODE

Free And Open Source Inventory Management System - XSS

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add Member section.

CVSS 6.1

View Code

CVE-2023-39710 NOMISEC MEDIUM NO CODE

Free And Open Source Inventory Management System - XSS

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add Customer section.

CVSS 6.1

View Code

CVE-2023-39711 NOMISEC MEDIUM NO CODE

Free And Open Source Inventory Management System - XSS

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Subtotal and Paidbill parameters under the Add New Put section.

CVSS 6.1

View Code

CVE-2023-39712 NOMISEC MEDIUM NO CODE

Free And Open Source Inventory Management System - XSS

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add New Put section.

CVSS 6.1

View Code

CVE-2023-39714 NOMISEC MEDIUM NO CODE

Free And Open Source Inventory Management System - XSS

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add New Member section.

CVSS 6.1

View Code