← Back

Webiness Inventory

webiness_inventory

Vendor: Webiness Inventory Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-8404
1Webiness Inventory Project
1Webiness Inventory
Jun 17, 2026
May 14, 2019
N/A· v4
6.5 MEDIUM· v3
5.5 MEDIUM· v2
An issue was discovered in Webiness Inventory 2.3. The ProductModel component allows Arbitrary File Upload via a crafted product image during the creation of a new product. Consequently, an attacker can steal information...Show more
An issue was discovered in Webiness Inventory 2.3. The ProductModel component allows Arbitrary File Upload via a crafted product image during the creation of a new product. Consequently, an attacker can steal information from the site with the help of an installed executable file, or change the contents of pages.Show less