CVE-2023-6774
- Reference to the description:
- Description:
- A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accounts_con/register_account. The manipulation of the argument Username with the input <script>alert(document.cookie)</script> leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-247910 is the identifier assigned to this vulnerability.
- Last updated date:
- 05/17/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 12/20/2023
- Reference url to background
https://drive.google.com/drive/folders/1wnrdIuBhZh5ia9Q61b_V_72eIaHsX-B1?usp=sharing