CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-7460

A vulnerability was found in OSWAPP Warehouse Inventory System 1.0/2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /change_password.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-273553 was assigned to this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.2%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 5.0

References

https://gist.github.com/topsky979/b178dd940d98828d1dfd0ccaaaddeb6b
https://vuldb.com/?ctiid.273553
https://vuldb.com/?id.273553
https://vuldb.com/?submit.379593

Products affected by CVE-2024-7460

Siamonhasan » Warehouse Inventory System » Version: 1.0

cpe:2.3:a:siamonhasan:warehouse_inventory_system:1.0
Siamonhasan » Warehouse Inventory System » Version: 2.0

cpe:2.3:a:siamonhasan:warehouse_inventory_system:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-7460

Products

Pricing

Contact Us