Persistent Cross-Site Scripting (XSS) Vulnerability in WallacePOS 1.4.3

Persistent Cross-Site Scripting (XSS) Vulnerability in WallacePOS 1.4.3

CVE-2019-3958 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Insufficient output sanitization in WallacePOS 1.4.3 allows a remote, authenticated attacker to conduct persistent cross-site scripting (XSS) attacks via a crafted sales transaction.

Learn more about our Web Application Penetration Testing UK.