stemword/php-inventory-management-system

Releases0

Stars292

Open source inventory management system with php and mysql Invoice generation and easy to download invoice in PDF format Lightweight and easy to use Order management and product management can be done with ease Report management User wise sell report.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-24231 ↗	Feb 10, 2023Friday, 10 February 2023, 16:15	4.8 MEDIUM	—
A stored cross-site scripting (XSS) vulnerability in the component /php-inventory-management-system/categories.php of Inventory Management System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Categories Name parameter.
CVE-2023-24232 ↗	Feb 10, 2023Friday, 10 February 2023, 16:15	4.8 MEDIUM	—
A stored cross-site scripting (XSS) vulnerability in the component /php-inventory-management-system/product.php of Inventory Management System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Product Name parameter.
CVE-2023-24233 ↗	Feb 10, 2023Friday, 10 February 2023, 16:15	4.8 MEDIUM	—
A stored cross-site scripting (XSS) vulnerability in the component /php-inventory-management-system/orders.php?o=add of Inventory Management System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Client Name parameter.
CVE-2023-24234 ↗	Feb 10, 2023Friday, 10 February 2023, 16:15	4.8 MEDIUM	—
A stored cross-site scripting (XSS) vulnerability in the component php-inventory-management-system/brand.php of Inventory Management System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Brand Name parameter.