Skip to main content

Lomag Warehouse Management

4 CVEs product

Monthly

CVE-2024-32213 MEDIUM POC This Month

The LoMag WareHouse Management application version 1.0.20.120 and older were found to allow weak passwords. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Brute Force Information Disclosure Lomag Warehouse Management
NVD
CVSS 3.1
5.3
EPSS
0.9%
CVE-2024-32212 HIGH POC This Week

SQL Injection vulnerability in LOGINT LoMag Inventory Management v1.0.20.120 and before allows an attacker to execute arbitrary code via the ArticleGetGroups, DocAddDocument, ClassClickShop and. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

SQLi RCE Lomag Warehouse Management
NVD
CVSS 3.1
8.1
EPSS
0.7%
CVE-2024-32211 MEDIUM POC This Month

An issue in LOGINT LoMag Inventory Management v1.0.20.120 and before allows a local attacker to obtain sensitive information via the UserClass.cs and Settings.cs components. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Lomag Warehouse Management
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2024-32210 MEDIUM POC This Month

The LoMag WareHouse Management application version 1.0.20.120 and older were to utilize hard-coded passwords by default for forms and SQL connections. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Lomag Warehouse Management
NVD
CVSS 3.1
5.3
EPSS
0.4%
EPSS 1% CVSS 5.3
MEDIUM POC This Month

The LoMag WareHouse Management application version 1.0.20.120 and older were found to allow weak passwords. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Brute Force Information Disclosure Lomag Warehouse Management
NVD
EPSS 1% CVSS 8.1
HIGH POC This Week

SQL Injection vulnerability in LOGINT LoMag Inventory Management v1.0.20.120 and before allows an attacker to execute arbitrary code via the ArticleGetGroups, DocAddDocument, ClassClickShop and. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

SQLi RCE Lomag Warehouse Management
NVD
EPSS 0% CVSS 5.5
MEDIUM POC This Month

An issue in LOGINT LoMag Inventory Management v1.0.20.120 and before allows a local attacker to obtain sensitive information via the UserClass.cs and Settings.cs components. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Lomag Warehouse Management
NVD
EPSS 0% CVSS 5.3
MEDIUM POC This Month

The LoMag WareHouse Management application version 1.0.20.120 and older were to utilize hard-coded passwords by default for forms and SQL connections. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Lomag Warehouse Management
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy