Vulnerabilities > Codeastro

DATE CVE VULNERABILITY TITLE RISK
2023-12-13 CVE-2023-6774 Cross-site Scripting vulnerability in Codeastro POS and Inventory Management System 1.0
A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic.
network
low complexity
codeastro CWE-79
5.4
2022-11-01 CVE-2022-43085 Unrestricted Upload of File with Dangerous Type vulnerability in Codeastro Restaurant POS System 1.0
An arbitrary file upload vulnerability in add_product.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
network
low complexity
codeastro CWE-434
7.2
2022-11-01 CVE-2022-43086 SQL Injection vulnerability in Codeastro Restaurant POS System 1.0
Restaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via update_customer.php.
network
low complexity
codeastro CWE-89
4.9