← Back

Ingredient Stock Management System Project

ingredient_stock_management_system_project

7 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Ingredient Stock Management System
ingredient_stock_management_system
7 CVEs

CVEs (7)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-36690
1Ingredient Stock Management System Project
1Ingredient Stock Management System
Nov 21, 2024
Aug 29, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=user/manage_user&id=.
CVE-2022-36689
1Ingredient Stock Management System Project
1Ingredient Stock Management System
Nov 21, 2024
Aug 29, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/waste&month=.
CVE-2022-36688
1Ingredient Stock Management System Project
1Ingredient Stock Management System
Nov 21, 2024
Aug 29, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockout&month=.
CVE-2022-36687
1Ingredient Stock Management System Project
1Ingredient Stock Management System
Nov 21, 2024
Aug 29, 2022
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Ingredients Stock Management System v1.0 was discovered to contain an arbitrary file deletion vulnerability via the component /classes/Master.php?f=delete_img.
CVE-2022-36686
1Ingredient Stock Management System Project
1Ingredient Stock Management System
Nov 21, 2024
Aug 29, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockin&month=.
CVE-2022-32311
1Ingredient Stock Management System Project
1Ingredient Stock Management System
Nov 21, 2024
Jul 5, 2022
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Ingredient Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /isms/admin/stocks/view_stock.php.
CVE-2022-32310
1Ingredient Stock Management System Project
1Ingredient Stock Management System
Nov 21, 2024
Jul 5, 2022
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An access control issue in Ingredient Stock Management System v1.0 allows attackers to take over user accounts via a crafted POST request to /isms/classes/Users.php.