CVE-2024-32589 — Vulnetix

CVE-2024-32589 PUBLISHED CVSS 7.099999904632568 HIGH

Missing Authorization vulnerability in UkrSolution Barcode Scanner with Inventory & Order Manager.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through 1.5.3.

EPSS 0.08% · 23.6th percentile

Risk Scores

CVSS 3.1

7.099999904632568

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

EPSS Score

0.08%

23.6th percentile

Affected Products

Vendor	Product	Versions
UkrSolution	Barcode Scanner with Inventory & Order Manager	n/a
Dmitry V. (CEO of "UKR Solution")	Barcode Scanner with Inventory & Order Manager	0

Exploit Intelligence

https://patchstack.com/database/Wordpress/Plugin/barcode-scanner-lite-pos-to-manage-products-inventory-and-orders/vulnerability/wordpress-barcode-scanner-and-inventory-manager-plugin-1-5-3-broken-access-control-to-xss-vulnerability?_s_id=cve (circl)
CIRCL seen: CVE-2024-32589 (circl-sighting)
https://patchstack.com/database/wordpress/plugin/barcode-scanner-lite-pos-to-manage-products-inventory-and-orders/vulnerability/wordpress-barcode-scanner-and-inventory-manager-plugin-1-5-3-broken-access-control-to-xss-vulnerability?_s_id=cve (circl)
https://patchstack.com/database/wordpress/plugin/barcode-scanner-lite-pos-to-manage-products-inventory-and-orders/vulnerability/wordpress-barcode-scanner-and-inventory-manager-plugin-1-5-3-broken-access-control-to-xss-vulnerability (vulncheck)
(vulncheck-reported-exploitation)
(vulncheck-reported-exploitation)
(vulncheck-reported-exploitation)

Timeline

Apr 16, 2024 VulnCheck KEV Exploitation
Feb 19, 2025 PoC Published
Aug 31, 2025 EPSS Score
Aug 31, 2025 CVE Published
Sep 1, 2025 Coalition ESS Score
Sep 2, 2025 Coalition ESS Score
Sep 8, 2025 EPSS Score
Sep 15, 2025 EPSS Score
Sep 23, 2025 EPSS Score
Oct 1, 2025 EPSS Score
Oct 4, 2025 Coalition ESS Score
Oct 6, 2025 Coalition ESS Score

References

Open in Interactive Console →