SQL Injection vulnerability in hospital management system in php with source code v.1.0.0 allows a remote attacker to execute arbitrary code.
References
Link | Resource |
---|---|
https://github.com/LeiPudd/Hospital-Management-System-v1.0-has-SQL-Injection-SQLDET- | Exploit Third Party Advisory |
Configurations
History
24 Oct 2024, 14:38
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:princelycesar:hospital_management_system:1.0:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.2 |
First Time |
Princelycesar
Princelycesar hospital Management System |
|
References | () https://github.com/LeiPudd/Hospital-Management-System-v1.0-has-SQL-Injection-SQLDET- - Exploit, Third Party Advisory |
23 Oct 2024, 16:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-89 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.1 |
23 Oct 2024, 15:12
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
22 Oct 2024, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-10-22 22:15
Updated : 2024-10-24 14:38
NVD link : CVE-2024-48657
Mitre link : CVE-2024-48657
CVE.ORG link : CVE-2024-48657
JSON object : View
Products Affected
princelycesar
- hospital_management_system
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')