RSS   Podatności dla
'Ingredient stock management system'   RSS

2022-07-05
 
CVE-2022-32310

CWE-77
 
 
An access control issue in Ingredient Stock Management System v1.0 allows attackers to take over user accounts via a crafted POST request to /isms/classes/Users.php.

 
 
CVE-2022-32311

CWE-89
 
 
Ingredient Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /isms/admin/stocks/view_stock.php.

 

Copyright 2024, cxsecurity.com

 

Back to Top