A vulnerability was found in Online Medicine Ordering System 1.0. It has been classified as critical. This affects an unknown part of the file /omos/?p=products/view_product. The manipulation of the argument id leads to sql injection.
This vulnerability is uniquely identified as CVE-2024-25217. Access to the local network is required for this attack to succeed. There is no exploit available.