CVE-2025-66924 | Open Source Point of Sale 3.4.1 Item Kit Name cross site scripting

A vulnerability has been found in Open Source Point of Sale 3.4.1 and classified as problematic. Affected by this issue is some unknown functionality of the component Item Kit Handler. This manipulation of the argument Name causes cross site scripting.

This vulnerability is tracked as CVE-2025-66924. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More