CVE-2025-41011 | PHP Point of Sale 19.4 specific_customer start_date_formatted/end_date_formatted cross site scripting

A vulnerability marked as problematic has been reported in PHP Point of Sale 19.4. Impacted is an unknown function of the file /reports/generate/specific_customer. This manipulation of the argument start_date_formatted/end_date_formatted causes cross site scripting.

This vulnerability is registered as CVE-2025-41011. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More