Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ingredient_stock_management_system
(Ingredient_stock_management_system_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 7 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-07-05 | CVE-2022-32310 | An access control issue in Ingredient Stock Management System v1.0 allows attackers to take over user accounts via a crafted POST request to /isms/classes/Users.php. | Ingredient_stock_management_system | 9.8 | ||
| 2022-08-29 | CVE-2022-36687 | Ingredients Stock Management System v1.0 was discovered to contain an arbitrary file deletion vulnerability via the component /classes/Master.php?f=delete_img. | Ingredient_stock_management_system | 6.5 | ||
| 2022-08-29 | CVE-2022-36686 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockin&month=. | Ingredient_stock_management_system | 8.8 | ||
| 2022-08-29 | CVE-2022-36688 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockout&month=. | Ingredient_stock_management_system | 8.8 | ||
| 2022-08-29 | CVE-2022-36689 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/waste&month=. | Ingredient_stock_management_system | 8.8 | ||
| 2022-08-29 | CVE-2022-36690 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=user/manage_user&id=. | Ingredient_stock_management_system | 8.8 | ||
| 2022-07-05 | CVE-2022-32311 | Ingredient Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /isms/admin/stocks/view_stock.php. | Ingredient_stock_management_system | 9.8 |