CVE-2024-10740 | code-projects E-Health Care System up to 1.0 consulting_detail.php consulting_id sql injection

Inserito da Angelo Barbosa | Nov 2, 2024 | CVE

A vulnerability, which was classified as critical, was found in code-projects E-Health Care System up to 1.0. This affects an unknown part of the file /Admin/consulting_detail.php. The manipulation of the argument consulting_id leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-10740. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-10740 | code-projects E-Health Care System up to 1.0 consulting_detail.php consulting_id sql injection

Post correlati

CVE-2024-26145 | Discourse discourse-calendar Private Event authorization

CVE-2024-27923 | grav Phar File unrestricted upload

CVE-2024-43526 | Microsoft Windows up to Server 2022 23H2 Mobile Broadband Driver heap-based overflow

CVE-2024-36034 | Zoho ManageEngine ADAudit Plus up to 8003 Aggregate Report Search Option sql injection