| 제목 | SourceCodester Pharmacy Product Management System 1.0 Business Logic Errors |
|---|
| 설명 | A business logic vulnerability exists in Pharmacy Product Management System 1.0. The vulnerability is located in the add-stock.php file. The application fails to validate the 'txtqty' POST parameter during stock entry, allowing an authenticated attacker to submit negative integers. This results in the unintended reduction of inventory levels because adding a negative value effectively performs a subtraction from the current stock. |
|---|
| 원천 | ⚠️ https://github.com/meifukun/Web-Security-PoCs/blob/main/Pharmacy-Product-Management-System/Logic-AddStock-NegativeQty.md |
|---|
| 사용자 | Anonymous User |
|---|
| 제출 | 2026. 03. 25. AM 03:20 (17 날 ago) |
|---|
| 모더레이션 | 2026. 04. 08. PM 05:22 (15 days later) |
|---|
| 상태 | 중복 |
|---|
| VulDB 항목 | 353980 [SourceCodester Pharmacy Product Management System 1.0 add-stock.php txtqty 서비스 거부] |
|---|
| 포인트들 | 0 |
|---|