CVE-2024-2316 | Bdtask Hospital AutoManager up to 20240227 Update Bill Page /billing/bill/edit/ cross-site request forgery

Posted by Angelo Barbosa | Mar 8, 2024 | CVE

A vulnerability has been found in Bdtask Hospital AutoManager up to 20240227 and classified as problematic. This vulnerability affects unknown code of the file /billing/bill/edit/ of the component Update Bill Page. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-2316. The attack can be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2316 | Bdtask Hospital AutoManager up to 20240227 Update Bill Page /billing/bill/edit/ cross-site request forgery

Related Posts

CVE-2024-25568 | Elecom WRC-X3200GST3-B/WRC-G01-W os command injection

CVE-2023-52096 | SteVe Community ocpp-jaxb up to 0.0.7 StartTransaction Open Charge Point Protocol sql injection (Issue 13)

CVE-2023-23433 | Honor NTH-AN00 prior 7.0.0.157 System Files signature verification

CVE-2023-52443 | Linux Kernel up to 6.7.1 apparmor unpack_profile denial of service