CVE-2024-10740 | code-projects E-Health Care System up to 1.0 consulting_detail.php consulting_id sql injection

Inserito da Angelo Barbosa | Nov 2, 2024 | CVE

A vulnerability, which was classified as critical, was found in code-projects E-Health Care System up to 1.0. This affects an unknown part of the file /Admin/consulting_detail.php. The manipulation of the argument consulting_id leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-10740. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-10740 | code-projects E-Health Care System up to 1.0 consulting_detail.php consulting_id sql injection

Post correlati

CVE-2024-38453 | SalesForce Avalara for Salesforce CPQ App up to 6.x API Key information disclosure

CVE-2024-31332 | Google Android 13/14 Wi-Fi Connection permission

CVE-2024-46985 | DataEase up to 2.10.0 xml external entity reference

CVE-2023-37527 | HCL BigFix Platform up to 9.5.23/10.0.10 Web Reports cross site scripting (KB0110209)