Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SourceCodester Inventory Management System Password edit_update.php access control
Vulnerability Description
A vulnerability has been found in SourceCodester Inventory Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file edit_update.php of the component Password Handler. The manipulation of the argument user_id leads to improper access controls. The attack can be initiated remotely. VDB-236218 is the identifier assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
访问控制不恰当
Vulnerability Title
Inventory Management System 访问控制错误漏洞
Vulnerability Description
Inventory Management System是stemword个人开发者的一个库存管理系统。 SourceCodester Inventory Management System 1.0 版本存在访问控制错误漏洞,该漏洞源于通过 Password Handler 组件的 edit_update.php 页面的 user_id 参数存在不正确的访问控制。
CVSS Information
N/A
Vulnerability Type
N/A