POS Codekop
by Codekop
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-36347 | 0.07 | — | 0.84 | Jun 30, 2023 | A broken authentication mechanism in the endpoint excel.php of POS Codekop v2.0 allows unauthenticated attackers to download selling data. | |||
| CVE-2023-36346 | 0.04 | — | 0.09 | Jun 23, 2023 | POS Codekop v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the nm_member parameter at print.php. |
- CVE-2023-36347Jun 30, 2023risk 0.07cvss —epss 0.84
A broken authentication mechanism in the endpoint excel.php of POS Codekop v2.0 allows unauthenticated attackers to download selling data.
- CVE-2023-36346Jun 23, 2023risk 0.04cvss —epss 0.09
POS Codekop v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the nm_member parameter at print.php.