Unrated severityNVD Advisory· Published Feb 10, 2023· Updated Mar 24, 2025
CVE-2023-24234
CVE-2023-24234
Description
A stored cross-site scripting (XSS) vulnerability in the component php-inventory-management-system/brand.php of Inventory Management System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Brand Name parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Inventory Management System/Inventory Management Systemdescription
- Range: v1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.