| Titre | SourceCodester Inventory Management System 1.0 Business Logic Errors |
|---|
| Description | A critical vulnerability exists in the password reset functionality of the SourceCodester Inventory Management System. An unauthenticated attacker can reset the password of any user—including administrator accounts—without verification. This leads to complete account takeover and full system compromise. |
|---|
| La source | ⚠️ https://www.notion.so/Unauthenticated-Password-Reset-Vulnerability-in-SourceCodester-Inventory-Management-System-2b023917db8c8001b5ecf4c50a54dfbd?source=copy_link |
|---|
| Utilisateur | Amit_singh (UID 92775) |
|---|
| Soumission | 19/11/2025 07:58 (il y a 5 mois) |
|---|
| Modérer | 22/11/2025 18:33 (3 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 333329 [SourceCodester Inventory Management System 1.0 resetPassword.php élévation de privilèges] |
|---|
| Points | 14 |
|---|