| 제목 | SourceCodester Pharmacy Product Management System 1.0 Business Logic Errors |
|---|
| 설명 | A business logic vulnerability exists in Pharmacy Product Management System 1.0. The flaw is located in the file add-stock.php. The application fails to validate the 'txtprice' and 'txttotalcost' POST parameters, allowing an authenticated attacker to submit negative values. This results in the recording of negative procurement costs, leading to the corruption of inventory asset valuation and financial expense reports. |
|---|
| 원천 | ⚠️ https://github.com/meifukun/Web-Security-PoCs/blob/main/Pharmacy-Product-Management-System/Logic-AddStock-NegativePrice.md |
|---|
| 사용자 | Anonymous User |
|---|
| 제출 | 2026. 03. 25. AM 03:19 (17 날 ago) |
|---|
| 모더레이션 | 2026. 04. 08. PM 05:22 (15 days later) |
|---|
| 상태 | 중복 |
|---|
| VulDB 항목 | 353972 [SourceCodester Pharmacy Product Management System 1.0 add-stock.php txtprice/txttotalcost] |
|---|
| 포인트들 | 0 |
|---|