Key Information About the Vulnerabilities Software Information Software Name: POS Codekop Description: An open-source point-of-sale application built with PHP and MySQL Developer: fauzan1892 Official Website: https://www.codekop.com/ Source Code Repository: https://github.com/fauzan1892/pos-kasir-php Vulnerability Details CVE-2023-36345 - Unauthorized CSRF Category: Cross-Site Request Forgery (CSRF) Vulnerability Description: Lacks CSRF protection, allowing attackers to force unauthorized actions on high-privileged users, such as setting updates. Privileges Required: No authentication required CVE-2023-36346 - Unauthorized XSS Category: Cross-Site Scripting (XSS) Vulnerability Description: A reflected XSS vulnerability was found in the parameter of the endpoint, which does not require authentication. Privileges Required: No authentication required CVE-2023-36347 - Authentication Bypass Category: Authentication Bypass Vulnerability Description: The endpoint lacks authentication, potentially allowing attackers to download sales data without authorization. Privileges Required: No authentication required CVE-2023-36348 - Authenticated Remote Code Execution Category: Remote Code Execution (RCE) Vulnerability Description: The application does not sanitize the parameter when sending data to . Attackers can exploit this by uploading a PHP file and accessing it, leading to remote code execution. Privileges Required: Authentication required CVE-2023-37156 - Path Traversal Category: Path Traversal Vulnerability Description: Unsafe usage of PHP functions in the directory allows attackers to access files outside the directory. Timeline May 25, 2023: Vulnerabilities discovered May 25, 2023: Developer contacted June 23, 2023: CVEs assigned June 24, 2023: Article published References https://www.tenable.com/cve/CVE-2023-36348 https://www.tenable.com/cve/CVE-2023-36347 https://www.tenable.com/cve/CVE-2023-36346 https://www.tenable.com/cve/CVE-2023-36345