CVE-2024-0362 | PHPGurukul Hospital Management System 1.0 change-password.php cpass sql injection

Posted by Angelo Barbosa | Jan 9, 2024 | CVE

A vulnerability classified as critical was found in PHPGurukul Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/change-password.php. The manipulation of the argument cpass leads to sql injection.

This vulnerability is known as CVE-2024-0362. Access to the local network is required for this attack. Furthermore, there is an exploit available.

CVE-2024-0362 | PHPGurukul Hospital Management System 1.0 change-password.php cpass sql injection

Related Posts

CVE-2024-24810 | WiX Toolset up to 4.0.3 on Windows Installer untrusted search path (GHSA-7wh2-wxc7-9ph5)

CVE-2024-42482 | fish-shop syntax-check up to 1.6.11 Workflow delimiters

CVE-2024-25309 | code-projects Simple School Managment System 1.0 School/teacher_login.php pass sql injection

CVE-2024-31041 | NanoMQ 0.21.7 mqtt_parser.c topic_filtern null pointer dereference