Purchase Order Management
purchase_order_management
Vendor: Purchase Order Management Project • 3 CVEs
CVEs (3)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Purchase Order Management Project 1Purchase Order Management Jun 17, 2026 Apr 14, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Purchase Order Management v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the password parameter at /purchase_order/classes/login.php. |
1Purchase Order Management Project 1Purchase Order Management Jun 17, 2026 Apr 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Purchase Order Management v1.0 was discovered to contain a SQL injection vulnerability via the password parameter at /purchase_order/admin/login.php. |
1Purchase Order Management Project 1Purchase Order Management Jun 17, 2026 Apr 14, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Purchase Order Management v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server. |