| 标题 | SourceCodester Inventory Management System 1.0 Business Logic Errors |
|---|
| 描述 | A critical vulnerability exists in the password reset functionality of the SourceCodester Inventory Management System. An unauthenticated attacker can reset the password of any user—including administrator accounts—without verification. This leads to complete account takeover and full system compromise. |
|---|
| 来源 | ⚠️ https://www.notion.so/Unauthenticated-Password-Reset-Vulnerability-in-SourceCodester-Inventory-Management-System-2b023917db8c8001b5ecf4c50a54dfbd?source=copy_link |
|---|
| 用户 | Amit_singh (UID 92775) |
|---|
| 提交 | 2025-11-19 07時58分 (5 月前) |
|---|
| 管理 | 2025-11-22 18時33分 (3 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 333329 [SourceCodester Inventory Management System 1.0 resetPassword.php 权限提升] |
|---|
| 积分 | 14 |
|---|