CVE-2024-2155

Published: Mar 4, 2024Modified: Apr 22, 2025

4.3

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Exploitability: 2.8 / Impact: 1.4

Source: NVD

Description

A vulnerability was found in SourceCodester Best POS Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-255587.

Affected (1)

Products: Mayurik: Best Pos Management System

1 product

Best Pos Management System

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Mayurik Best Pos Management System	Version 1.0

Related CWEs

External Control of File Name or Path

The product allows user input to control or influence paths or file names that are used in filesystem operations.

References (6)

https://github.com/wkeyi0x1/vul-report/blob/main/Best%20pos%20management%20system%20in%20php/report.md

Source: cna@vuldb.com

Broken Link

https://vuldb.com/?ctiid.255587

Source: cna@vuldb.com

Permissions Required

https://vuldb.com/?id.255587

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

https://github.com/wkeyi0x1/vul-report/blob/main/Best%20pos%20management%20system%20in%20php/report.md

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

https://vuldb.com/?ctiid.255587

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions Required

https://vuldb.com/?id.255587

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.