Vulnerabilities
Vulnerable Software
Phppointofsale:  Security Vulnerabilities
The application was vulnerable to Cross-Site Request Forgery (CSRF) attacks, allowing an attacker to coerce users into sending malicious requests to the site to delete their account, or in rare circumstances, hijack their account and create other admin accounts.
CVSS Score
8.8
EPSS Score
0.003
Published
2022-10-31
PHP Point Of Sale (POS) 10.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/scaffolding/views/view.php and certain other files.
CVSS Score
5.0
EPSS Score
0.012
Published
2011-09-24


Contact Us

Shodan ® - All rights reserved