leon-mbs/zstore

Releases298

Frequency1 week 2 days

Last Release 5 days ago

Stars212

Облікова програма (склад, торгівля, виробництво) з веб-інтерфейсом

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-53985 ↗	Jan 13, 2026Tuesday, 13 January 2026, 23:15	6.1 MEDIUM	—
Zstore, now referred to as Zippy CRM, 6.5.4 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts through unvalidated input parameters. Attackers can submit crafted payloads in manual insertion points to execute arbitrary JavaScript code in victim's browser context.