| 제목 | SourceCodester Pharmacy Product Management System 1.0 Business Logic Errors |
|---|
| 설명 | A business logic vulnerability exists in Pharmacy Product Management System 1.0. The vulnerability is located in the add-sales.php file. The application fails to verify if the requested sales quantity 'txtqty' exceeds the available stock level. An authenticated attacker can manipulate the POST request to purchase quantities larger than the actual inventory, leading to negative stock records and inventory corruption. |
|---|
| 원천 | ⚠️ https://github.com/meifukun/Web-Security-PoCs/blob/main/Pharmacy-Product-Management-System/Logic-AddSales-Overselling.md |
|---|
| 사용자 | Anonymous User |
|---|
| 제출 | 2026. 03. 25. AM 03:18 (17 날 ago) |
|---|
| 모더레이션 | 2026. 04. 08. PM 05:22 (15 days later) |
|---|
| 상태 | 중복 |
|---|
| VulDB 항목 | 353979 [SourceCodester Pharmacy Product Management System 1.0 add-sales.php txtqty 권한 상승] |
|---|
| 포인트들 | 0 |
|---|