SourceCodester Inventory Management System is a proprietary enterprise software used for inventory management. This vulnerability allows attackers to inject malicious formulas into the system's CSV export feature, potentially leading to remote code execution.
You're affected if you use A security vulnerability. Specific version info not stated in the advisory. If you don't recognise this software, you're probably not affected.
Upgrade to version 1.1 or later from the official SourceCodester website.
- Immediate mitigations:
- Disable CSV export functionality until a patch is available.
- Monitor system logs for suspicious activity.