Phppointofsale: >> Php Point Of Sale >> 19.4 Security Vulnerabilities
HTML injection vulnerability in PHP Point of Sale v19.4. This vulnerability allows an attacker to render HTML in the victim's browser due to a lack of proper validation of user input by sending a request to '/reports/generate/specific_customer', ussing 'start_date_formatted' y 'end_date_formatted' parameters.
CVSS Score
5.1
EPSS Score
0.0
Published
2026-04-21