First published: Tue Jul 30 2024(Updated: )
A vulnerability was found in SourceCodester Medicine Tracker System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /classes/Users.php?f=save_user of the component Password Change Handler. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-272806 is the identifier assigned to this vulnerability.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Oretnom23 Medicine Tracker System | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-7226 has been classified as a problematic vulnerability affecting the Password Change Handler in the Medicine Tracker System.
CVE-2024-7226 is a cross-site request forgery (CSRF) vulnerability impacting the /classes/Users.php file.
To mitigate CVE-2024-7226, it is recommended to implement proper CSRF token validation in the affected component.
CVE-2024-7226 affects the Medicine Tracker System version 1.0 developed by Oretnom23.
CVE-2024-7226 impacts the Password Change Handler component in the affected software.