A vulnerability, which was classified as problematic, was found in Bdtask Multi-Store Inventory Management System up to 20240325. Affected is an unknown function of the file /stockmovment/stockmovment/delete/ of the component Stock Movement Page. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-258924. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
References
Configurations
No configuration.
History
11 Apr 2024, 01:25
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
02 Apr 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-02 17:15
Updated : 2024-05-17 02:39
NVD link : CVE-2024-3151
Mitre link : CVE-2024-3151
CVE.ORG link : CVE-2024-3151
JSON object : View
Products Affected
No product.
CWE
CWE-352
Cross-Site Request Forgery (CSRF)