CVE-2024-2639 | Bdtask Wholesale Inventory Management System up to 20240311 session fixiation

Posted by Angelo Barbosa | Mar 19, 2024 | CVE

A vulnerability was found in Bdtask Wholesale Inventory Management System up to 20240311. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to session fixiation.

This vulnerability is known as CVE-2024-2639. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2639 | Bdtask Wholesale Inventory Management System up to 20240311 session fixiation

Related Posts

CVE-2024-35580 | Tenda AX1806 1.0.0.1 formSetIptv adv.iptv.stbpvid stack-based overflow

CVE-2024-4936 | Canto Plugin up to 3.0.8 on WordPress file inclusion

CVE-2024-29933 | GhozyLab Web Icons Plugin up to 1.0.0.10 on WordPress cross site scripting

CVE-2024-6935 | formtools.org Form Tools 3.1.1 User Settings Page /admin/clients/ cross site scripting