CVE-2024-5097 | SourceCodester Simple Inventory System 1.0 tableedit.php#page=editprice itemnumber cross-site request forgery

Inserito da Angelo Barbosa | Mag 18, 2024 | CVE

A vulnerability, which was classified as problematic, was found in SourceCodester Simple Inventory System 1.0. Affected is an unknown function of the file /tableedit.php#page=editprice. The manipulation of the argument itemnumber leads to cross-site request forgery.

This vulnerability is traded as CVE-2024-5097. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-5097 | SourceCodester Simple Inventory System 1.0 tableedit.php#page=editprice itemnumber cross-site request forgery

Post correlati

CVE-2024-5292 | D-Link Network Assistant 4.0.0.21 DNACore Service uncontrolled search path (ZDI-24-443)

CVE-2023-48313 | Umbraco CMS up to 10.8.0/12.3.3 cross site scripting

CVE-2021-22509 | OpenText NetIQ Advance Authentication up to 6.3.5.0 cleartext storage

CVE-2023-41804 | Brainstorm Force Starter Templates Plugin up to 3.2.4 on WordPress server-side request forgery