A Cross-Site Request Forgery (CSRF) in the component delete_user.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
Metrics
Affected Vendors & Products
References
History
Wed, 21 Aug 2024 14:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Siamonhasan
Siamonhasan warehouse Inventory System |
|
CPEs | cpe:2.3:a:siamonhasan:warehouse_inventory_system:2.0:*:*:*:*:*:*:* | |
Vendors & Products |
Siamonhasan
Siamonhasan warehouse Inventory System |
Tue, 20 Aug 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Warehouse Inventory System
Warehouse Inventory System warehouse Inventory System |
|
Weaknesses | CWE-352 | |
CPEs | cpe:2.3:a:warehouse_inventory_system:warehouse_inventory_system:*:*:*:*:*:*:*:* | |
Vendors & Products |
Warehouse Inventory System
Warehouse Inventory System warehouse Inventory System |
|
Metrics |
cvssV3_1
|
Tue, 20 Aug 2024 13:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A Cross-Site Request Forgery (CSRF) in the component delete_user.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-08-20T00:00:00
Updated: 2024-08-20T17:51:06.838Z
Reserved: 2024-08-05T00:00:00
Link: CVE-2024-42583
Vulnrichment
Updated: 2024-08-20T17:50:46.197Z
NVD
Status : Analyzed
Published: 2024-08-20T13:15:09.077
Modified: 2024-08-21T13:38:19.947
Link: CVE-2024-42583
Redhat
No data.