CVE-2023-6426 | BigProf Online Invoicing System 2.6 invoices_view.php FirstRecord cross site scripting

Inserito da Angelo Barbosa | Nov 30, 2023 | CVE

A vulnerability, which was classified as problematic, has been found in BigProf Online Invoicing System 2.6. Affected by this issue is some unknown functionality of the file /invoicing/app/invoices_view.php. The manipulation of the argument FirstRecord leads to cross site scripting.

This vulnerability is handled as CVE-2023-6426. The attack may be launched remotely. There is no exploit available.

CVE-2023-6426 | BigProf Online Invoicing System 2.6 invoices_view.php FirstRecord cross site scripting

Post correlati

CVE-2024-3053 | Forminator Plugin up to 1.29.2 on WordPress Shortcode forminator_form cross site scripting

CVE-2024-31455 | Stacklok Minder 0.0.39 sql injection

CVE-2023-4552 | OpenText AppBuilder up to 23.1 System Files access control

CVE-2023-51415 | GiveWP Donation Plugin and Fundraising Platform Plugin up to 3.2.2 on WordPress cross site scripting