CVE-2024-10967 | code-projects E-Health Care System 1.0 delete_user_appointment_request.php id sql injection

Inserito da Angelo Barbosa | Nov 7, 2024 | CVE

A vulnerability was found in code-projects E-Health Care System 1.0. It has been classified as critical. Affected is an unknown function of the file /Doctor/delete_user_appointment_request.php. The manipulation of the argument id leads to sql injection.

This vulnerability is traded as CVE-2024-10967. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-10967 | code-projects E-Health Care System 1.0 delete_user_appointment_request.php id sql injection

Post correlati

CVE-2024-5137 | PHPGurukul Directory Management System 1.0 Searchbar /admin/admin-profile.php cross site scripting

CVE-2024-0110 | NVIDIA CUDA Toolkit up to 12.6 cuobjdump out-of-bounds write

CVE-2023-6743 | Unlimited Elements for Elementor Plugin up to 1.5.89 on WordPress Template Import Remote Code Execution

CVE-2023-48312 | capsule-proxy up to 0.4.5 TokenReview improper authentication