SecurityHome.eu Security vulnerability: Open Source Point Of Sale 2.3.1 Cross Site Scripting

Home / vulnerabilities PDF

Open Source Point Of Sale 2.3.1 Cross Site Scripting
Posted on 29 September 2015
Source : packetstormsecurity.org Link

Vulnerability title: Stored XSS In Open Source Point of Sale
CVE: CVE-2015-0299
Vendor: http://sourceforge.net/projects/opensourcepos/
Product: Open Source Point of Sale
Affected version: 2.3.1
Fixed version: -
Reported by: Arturo Rodriguez
Details:

Multiple parameters are vulnerable to stored XSS within the application. The attacker needs to be authenticated in order to exploit this vulnerability.

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Exploits :

Customer Support System 1.0 Cross Site Scripting
Xhibiter NFT Marketplace 1.10.2 SQL Injection
WordPress WPCode Lite 2.1.14 Cross Site Scripting
Azon Dominator Affiliate Marketing Script SQL Injection
Simple Laboratory Management System 1.0 SQL Injection

Last 20