CVE-2023-6775

Name of the Vulnerable Software and Affected Versions CodeAstro POS and Inventory Management System version 1.0

Description A vulnerability was found in the CodeAstro POS and Inventory Management System, which has been classified as problematic. This issue affects an unknown part of the file /item/item con. The manipulation of the item name argument leads to cross-site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Recommendations For CodeAstro POS and Inventory Management System version 1.0, consider disabling the functionality that allows the manipulation of the item name argument until a patch is available. Restrict access to the /item/item con file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.