NotCVE - vendor:"Bdtask" product:"Multi Store Inventory Management System" version:"1.0"

2 results (0.008 seconds)

CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 1

CVE-2022-28993

https://notcve.org/view.php?id=CVE-2022-28993

20 May 2022 — Multi Store Inventory Management System v1.0 allows attackers to perform an account takeover via a crafted POST request. Multi Store Inventory Management System versión v1.0, permite a atacantes llevar a cabo una toma de control de cuentas por medio de una petición POST diseñada • https://packetstormsecurity.com/files/166591/Multi-Store-Inventory-Management-System-1.0-Account-Takeover.html • CWE-862: Missing Authorization •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2022-28991

https://notcve.org/view.php?id=CVE-2022-28991

20 May 2022 — Multi Store Inventory Management System v1.0 was discovered to contain an information disclosure vulnerability which allows attackers to access sensitive files. Se ha detectado que Multi Store Inventory Management System versión v1.0, contiene una vulnerabilidad de divulgación de información que permite a atacantes acceder a archivos confidenciales • https://packetstormsecurity.com/files/166590/Multi-Store-Inventory-Management-System-1.0-Information-Disclosure.html • CWE-425: Direct Request ('Forced Browsing') •