CVE-2024-7226 | SourceCodester Medicine Tracker System 1.0 Password Change Users.php cross-site request forgery

Posted by Angelo Barbosa | Jul 29, 2024 | CVE

A vulnerability was found in SourceCodester Medicine Tracker System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /classes/Users.php?f=save_user of the component Password Change Handler. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-7226. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-7226 | SourceCodester Medicine Tracker System 1.0 Password Change Users.php cross-site request forgery

Related Posts

CVE-2024-10607 | code-projects Courier Management System 1.0 /track-result.php Consignment sql injection

CVE-2021-47134 | Linux Kernel up to 5.10.42/5.12.9 fdt setup_arch denial of service (5148066edbdc/8a7e8b4e5631/668a84c1bfb2)

CVE-2022-34268 | RWS WorldServer up to 11.7.2 /clientLogin improper authentication

CVE-2024-4961 | D-Link DAR-7000-40 V31R02B1413C /user/onlineuser.php file_upload unrestricted upload (SAP10354)