A vulnerability, which was classified as critical, was found in PHPGurukul Hospital Management System 1.0. This affects an unknown part of the file admin/query-details.php. The manipulation of the argument adminremark leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-250131.
References
Link | Resource |
---|---|
https://github.com/laoquanshi/PHPGurukul-Hospital-Management-System/blob/main/PHPGurukul%20Hospital%20Management%20System%20SQL11.docx | Third Party Advisory |
https://vuldb.com/?ctiid.250131 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.250131 | Third Party Advisory |
Configurations
History
29 Feb 2024, 01:43
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-10 03:15
Updated : 2024-05-17 02:34
NVD link : CVE-2024-0364
Mitre link : CVE-2024-0364
CVE.ORG link : CVE-2024-0364
JSON object : View
Products Affected
phpgurukul
- hospital_management_system
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')