Bookstore Management System
CVE-2024-11673
MEDIUM
Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from Vendor (vuldb) · only source for this CVE.
CVSS VectorVendor: vuldb
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
1DescriptionCVE.org
A vulnerability, which was classified as problematic, has been found in 1000 Projects Bookstore Management System 1.0. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
AnalysisAI
A vulnerability, which was classified as problematic, has been found in 1000 Projects Bookstore Management System 1.0. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Technical ContextAI
This vulnerability is classified as Cross-Site Request Forgery (CSRF) (CWE-352), which allows attackers to trick authenticated users into performing unintended actions. A vulnerability, which was classified as problematic, has been found in 1000 Projects Bookstore Management System 1.0. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Affected products include: 1000Projects Bookstore Management System.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Implement anti-CSRF tokens, validate Origin/Referer headers, use SameSite cookie attribute.
More in Bookstore Management System
View allA vulnerability has been found in the 1000projects Bookstore Management System PHP MySQL Project 1.0.php. Rated critical
A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as critical. Rated high s
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. Rated hig
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. Rated high severity (CVSS 7.3), this vulnera
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. Rated high severity (CVSS 7.3), this vulnera
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. Rated medium severity (CVSS 6.9), this vulne
A vulnerability, which was classified as critical, has been found in 1000 Projects Bookstore Management System 1.0. Rate
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. Rated medium severity (CVSS 6.9), this vulne
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. Rated medium severity (CVSS 6.9), this vulne
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. Rated medium severity (CVSS 6.3), this vulne
A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as problematic. Rated med
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. Rated med
Same weakness CWE-352 – Cross-Site Request Forgery (CSRF)
View allShare
External POC / Exploit Code
Leaving vuln.today