N/A

Multiple cross-site scripting (XSS) vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add Member section.

N/A

N/A

Inventory Management System 跨站脚本漏洞

Inventory Management System是stemword个人开发者的一个库存管理系统。 Free and Open Source Inventory Management System v1.0版本存在安全漏洞，该漏洞源于允许攻击者通过将精心设计的有效负载注入Add Member section下的 Name, Address, Company参数来执行任意 Web 脚本或 HTML。

N/A

N/A