Submeter #577497: Multiple Unbounded Input Vulnerabilities in Pharmacy Management System v1.0 Buffer Overflowinformação

TítuloMultiple Unbounded Input Vulnerabilities in Pharmacy Management System v1.0 Buffer Overflow
DescriçãoThe Pharmacy Management System contains multiple critical unbounded input vulnerabilities (CWE-120, CWE-125) in its `medicineType::take_order()` function. These vulnerabilities stem from unsafe usage of `cin` for user input without proper length validation, allowing attackers to overflow buffers in several fields during the order-taking process. Successful exploitation could lead to memory corruption, arbitrary code execution, or system crashes.
Fonte⚠️ https://github.com/zzzxc643/cve/blob/main/Pharmacy_Management_System.md
Utilizador
 zzzxc (UID 81185)
Submissão14/05/2025 14h11 (há 1 Ano)
Moderação17/05/2025 08h29 (3 days later)
EstadoAceite
Entrada VulDB309441 [code-projects Pharmacy Management System 1.0 Add Order Details medicineType::take_order Excesso de tampão]
Pontos20

VoltarVisão GeralPróximo

Do you know our Splunk app?

Download it now for free!