CVE-2024-10297 | PHPGurukul Medical Card Generation System 1.0 Managecard Edit Image Page /admin/changeimage.php editid sql injection

Posted by Angelo Barbosa | Oct 23, 2024 | CVE

A vulnerability was found in PHPGurukul Medical Card Generation System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/changeimage.php of the component Managecard Edit Image Page. The manipulation of the argument editid leads to sql injection.

This vulnerability is handled as CVE-2024-10297. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-10297 | PHPGurukul Medical Card Generation System 1.0 Managecard Edit Image Page /admin/changeimage.php editid sql injection

Related Posts

CVE-2024-42643 | SmartDNS 46 fast_ping.c denial of service

CVE-2024-26268 | Liferay Portal/DXP information exposure

CVE-2021-47624 | Linux Kernel up to 5.15.23/5.16.9 SUNRPC rpc_sysfs_xprt_kobj_get_xprt reference count (4b22aa42bd4d/5f6024c05a2c/776d794f28c9)

CVE-2024-7302 | Blog2Social Plugin up to 7.5.4 on WordPress File Upload cross site scripting