Warehouse Inventory Management System 授权问题漏洞

Warehouse Inventory Management System is a warehouse inventory management system developed by go2ismail. The Warehouse Inventory Management System versions 9.20250118 and earlier have an authorization issue vulnerability. This vulnerability arises from improper authorization due to operations on...

EUVD-2024-48381

Malicious code in bioql PyPI...

EUVD-2024-48380

Malicious code in bioql PyPI...

CVE-2024-42578

A Cross-Site Request Forgery CSRF in the component editproduct.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42581

A Cross-Site Request Forgery CSRF in the component deletegroup.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42576

A Cross-Site Request Forgery CSRF in the component editcategorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42585

A Cross-Site Request Forgery CSRF in the component deletemedia.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42584

A Cross-Site Request Forgery CSRF in the component deleteproduct.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-7459

A vulnerability was found in OSWAPP Warehouse Inventory System 1.0/2.0. It has been classified as problematic. Affected is an unknown function of the file /editaccount.php. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-42580

A Cross-Site Request Forgery CSRF in the component editgroup.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42579

A Cross-Site Request Forgery CSRF in the component addgroup.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42582

A Cross-Site Request Forgery CSRF in the component deletecategorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42577

A Cross-Site Request Forgery CSRF in the component addproduct.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42586

A Cross-Site Request Forgery CSRF in the component categorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42583

A Cross-Site Request Forgery CSRF in the component deleteuser.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2020-23836

A Cross-Site Request Forgery CSRF vulnerability in edituser.php in OSWAPP Warehouse Inventory System aka OSWA-INV through 2020-08-10 allows remote attackers to change the admin's password after an authenticated admin visits a third-party site...

Warehouse Inventory System Cross-Site Request Forgery Vulnerability (CNVD-2024-38209)

Warehouse Inventory System is a Warehouse Inventory Management System by Siamon Hasan Personal Developer. A cross-site request forgery vulnerability exists in Warehouse Inventory System v2.0, which stems from the addgroup.php component not adequately verifying that a request comes from a trusted...

Warehouse Inventory System Cross-Site Request Forgery Vulnerability (CNVD-2024-38214)

Warehouse Inventory System is a Warehouse Inventory Management System by Siamon Hasan Personal Developer. A cross-site request forgery vulnerability exists in Warehouse Inventory System v2.0, which stems from the deletemedia.php component not adequately verifying that a request comes from a trust...

Warehouse Inventory System Cross-Site Request Forgery Vulnerability (CNVD-2024-38212)

Warehouse Inventory System is a Warehouse Inventory Management System by Siamon Hasan Personal Developer. A cross-site request forgery vulnerability exists in Warehouse Inventory System v2.0, which stems from the deletecategorie.php component not adequately verifying that a request comes from a...

Warehouse Inventory System Cross-Site Request Forgery Vulnerability (CNVD-2024-38216)

Warehouse Inventory System is a Warehouse Inventory Management System by Siamon Hasan Personal Developer. A cross-site request forgery vulnerability exists in Warehouse Inventory System v2.0, which stems from the deleteuser.php component not adequately verifying that a request comes from a truste...