CVE

CVE-2023-39714

admin

CVE-2023-39714

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add New Member section.

Source: CVE-2023-39714

Exit mobile version