CVE-2024-7459

Name of the Vulnerable Software and Affected Versions OSWAPP Warehouse Inventory System versions 1.0 through 2.0

Description A problematic issue has been found, affecting an unknown function of the file /edit account.php. This leads to cross-site request forgery, which can be launched remotely.

Recommendations For OSWAPP Warehouse Inventory System versions 1.0 through 2.0, consider restricting access to the /edit account.php file until a patch is available. As a temporary workaround, avoid using the affected function in the /edit account.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.