| Title | Open-Source Samarium Business Management System 0.9.6 Stored XSS |
|---|
| Description | A stored Cross-Site Scripting (XSS) vulnerability was discovered in the open-source project Samarium - Business Management System, version v0.9.6. The vulnerability allows an attacker to inject malicious JavaScript code via the product image upload feature, resulting in code execution when the image is viewed—even by unauthenticated users. |
|---|
| Source | ⚠️ https://github.com/MaiqueSilva/VulnDB/blob/main/readme08.md |
|---|
| User | maique (UID 88562) |
|---|
| Submission | 07/31/2025 06:09 (9 months ago) |
|---|
| Moderation | 08/09/2025 07:41 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 319326 [oitcode samarium up to 0.9.6 Create Product Page /dashboard/product unrestricted upload] |
|---|
| Points | 18 |
|---|