exploitDog

CVE-2023-36346

Опубликовано: 23 июн. 2023

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

POS Codekop v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the nm_member parameter at print.php.

Ссылки

http://packetstormsecurity.com/files/173280/Sales-Of-Cashier-Goods-1.0-Cross-Site-Scripting.html
https://www.youtube.com/watch?v=bbbA-q1syrA
Exploit
Third Party Advisory
https://yuyudhn.github.io/pos-codekop-vulnerability/
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/173280/Sales-Of-Cashier-Goods-1.0-Cross-Site-Scripting.html
https://www.youtube.com/watch?v=bbbA-q1syrA
Exploit
Third Party Advisory
https://yuyudhn.github.io/pos-codekop-vulnerability/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:codekop:codekop:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.09444

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-9qw9-9m4p-h49w

CVSS3: 6.1

github

больше 2 лет назад

POS Codekop v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the nm_member parameter at print.php.

EPSS

Процентиль: 93%

0.09444

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79