Tranzware Fimi
1 CVEs
product
Monthly
TranzWare (POI) FIMI before 4.2.20.4.2 allows login_tw.php reflected Cross-Site Scripting (XSS). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
PHP
XSS
Tranzware Fimi
NVD
GitHub
CVSS 3.1
6.1
EPSS
0.7%
EPSS 1%
CVSS 6.1
MEDIUM
This Month
TranzWare (POI) FIMI before 4.2.20.4.2 allows login_tw.php reflected Cross-Site Scripting (XSS). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
PHP
XSS
Tranzware Fimi
NVD
GitHub