CVE-2024-11486

CVE-2024-11486 affects Code4Berry Decoration Management System 1.0, specifically the file /decoration/admin/user_permission.php (User Permission Handler). The root cause is improper privilege management, enabling remote initiation of an attack that can cause permission issues. Multiple sources co...

CVE-2024-11487

CVE-2024-11487 affects Code4Berry Decoration Management System 1.0, specifically the file /decoration/admin/btndates_report.php within the Between Dates Reports component. The vulnerability arises from improper handling of the fromdate/todate parameters, enabling SQL injection. Exploitation can b...

CVE-2024-11484

CVE-2024-11484 affects Code4Berry Decoration Management System 1.0. The vulnerability arises from manipulation of the parameter productimage1 in the file /decoration/admin/update_image.php (User Image Handler), leading to improper access controls. It is exploitable remotely and has publicly discl...

CVE-2024-11485

The CVE-2024-11485 entry concerns Code4Berry Decoration Management System 1.0. Affected is an unknown functionality in /decoration/admin/userregister.php within the User Handler component. The issue permits permission-related manipulation and can be exploited remotely; public exploitation has bee...