CVE-2024-0264 | SourceCodester Clinic Queuing System 1.0 /LoginRegistration.php formToken authorization

Posted by Angelo Barbosa | Jan 6, 2024 | CVE

A vulnerability was found in SourceCodester Clinic Queuing System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /LoginRegistration.php. The manipulation of the argument formToken leads to authorization bypass.

This vulnerability was named CVE-2024-0264. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-0264 | SourceCodester Clinic Queuing System 1.0 /LoginRegistration.php formToken authorization

Related Posts

CVE-2024-0972 | BuddyPress Members Only Plugin up to 3.3.5 on WordPress REST API information disclosure

CVE-2024-26005 | Phoenix Contact CHARX SEC-3150 up to 1.5.0 Service Restart cleanup (VDE-2024-011)

CVE-2024-8232 | iniNet Solutions SpiderControl SCADA Web Server up to 2.09 File unrestricted upload (icsa-24-254-02)

CVE-2024-20487 | Cisco Identity Services Engine Software 2.7.0 p8 up to 3.3 Patch 3 Web-based Management Interface cross site scripting (cisco-sa-ise-multi-vulns-AF544ED5)