Unrated severityNVD Advisory· Published Apr 28, 2021· Updated Aug 3, 2024
CVE-2021-29387
CVE-2021-29387
Description
Multiple stored cross-site scripting (XSS) vulnerabilities in Sourcecodester Equipment Inventory System 1.0 allow remote attackers to inject arbitrary javascript via any "Add" sections, such as Add Item , Employee and Position or others in the Name Parameters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Sourcecodester/Equipment Inventory Systemdescription
- Range: =1.0
Patches
Vulnerability mechanics
References
2- www.exploit-db.com/exploits/49722mitrex_refsource_MISC
- www.sourcecodester.com/php/11327/equipment-inventory.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.