Vulnerabilities > Wallaceit > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-31 | CVE-2019-3958 | Cross-site Scripting vulnerability in Wallaceit Wallacepos 1.4.3 Insufficient output sanitization in WallacePOS 1.4.3 allows a remote, authenticated attacker to conduct persistent cross-site scripting (XSS) attacks via a crafted sales transaction. | 5.4 |
| 2017-04-01 | CVE-2017-7388 | Cross-site Scripting vulnerability in Wallaceit Wallacepos A Cross-Site Scripting (XSS) was discovered in 'wallacepos v1.4.1'. | 6.1 |