Metrics
Affected Vendors & Products
Tue, 05 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Codezips
Codezips hospital Appointment System |
|
CPEs | cpe:2.3:a:codezips:hospital_appointment_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Codezips
Codezips hospital Appointment System |
|
Metrics |
ssvc
|
Mon, 04 Nov 2024 19:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The initial researcher advisory mentions contradicting file and parameter names to be affected. | |
Title | Codezips Hospital Appointment System doctorAction.php sql injection | |
Weaknesses | CWE-707 CWE-74 CWE-89 |
|
References |
| |
Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2024-11-04T19:31:04.205Z
Updated: 2024-11-05T14:32:19.577Z
Reserved: 2024-11-04T14:31:45.683Z
Link: CVE-2024-10791
Updated: 2024-11-05T14:32:02.373Z
Status : Analyzed
Published: 2024-11-04T20:15:04.580
Modified: 2024-11-06T15:05:38.240
Link: CVE-2024-10791
No data.