CVE-2024-42585 | Warehouse Inventory System 2.0 delete_media.php cross-site request forgery

Inserito da Angelo Barbosa | Ago 20, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Warehouse Inventory System 2.0. Affected is an unknown function of the file delete_media.php. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2024-42585. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-42585 | Warehouse Inventory System 2.0 delete_media.php cross-site request forgery

Post correlati

CVE-2024-28991 | SolarWinds Access Rights Manager up to 2024.3 deserialization

CVE-2024-6150 | Citrix Provisioning denial of service (CTX678025)

CVE-2023-47322 | Silverpeas Core 6.3.1 userModify cross-site request forgery

CVE-2022-32751 | IBM Security Verify Directory 10.0.0 information disclosure (XFDB-228437)