4 matches found
PartKeepr Cross-Site Scripting Vulnerability
A cross-site scripting vulnerability exists in PartKeepr version 1.4.0, which is an inventory management software designed primarily for electronic components. The vulnerability stems from a security issue in the name field in /api/partcategories. An attacker could exploit this vulnerability to...
PartKeepr server-side request forgery vulnerability
PartKeepr is an inventory management software designed primarily for electronic components.PartKeepr suffers from a server-side request forgery vulnerability, which stems from the fact that the ability to upload attachments using a URL when creating a part does not validate whether a request can ...
DEBIAN-CVE-2018-14473
OCS Inventory 2.4.1 lacks a proper XML parsing configuration, allowing the use of external entities. This issue can be exploited by an attacker sending a crafted HTTP request in order to exfiltrate information or cause a Denial of Service...
Itech Inventory Management Software 3.77 - SQL Injection
Itech Inventory Management Software 3.77 - SQL Injection Exploit Title: Itech Inventory Management Software v3.77 - SQL Injection Google Dork: N/A Date: 02.02.2017 Vendor Homepage: http://itechscripts.com/ Software Buy: http://www.itechscripts.com/inventory-management-software/ Demo:...