A vulnerability was found in code-projects E-Health Care System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Doctor/doctor_login.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
References
Link | Resource |
---|---|
https://code-projects.org/ | Product |
https://github.com/20241018/cve/blob/main/sql.md | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.283454 | Permissions Required Third Party Advisory VDB Entry |
https://vuldb.com/?id.283454 | Third Party Advisory VDB Entry |
https://vuldb.com/?submit.438286 | Third Party Advisory VDB Entry |
Configurations
History
13 Nov 2024, 00:59
Type | Values Removed | Values Added |
---|---|---|
References | () https://code-projects.org/ - Product | |
References | () https://github.com/20241018/cve/blob/main/sql.md - Exploit, Third Party Advisory | |
References | () https://vuldb.com/?ctiid.283454 - Permissions Required, Third Party Advisory, VDB Entry | |
References | () https://vuldb.com/?id.283454 - Third Party Advisory, VDB Entry | |
References | () https://vuldb.com/?submit.438286 - Third Party Advisory, VDB Entry | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.1 |
First Time |
Anisha
Anisha e-health Care System |
|
CPE | cpe:2.3:a:anisha:e-health_care_system:1.0:*:*:*:*:*:*:* |
08 Nov 2024, 19:01
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
08 Nov 2024, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-11-08 04:15
Updated : 2024-11-13 00:59
NVD link : CVE-2024-10988
Mitre link : CVE-2024-10988
CVE.ORG link : CVE-2024-10988
JSON object : View
Products Affected
anisha
- e-health_care_system