CVE-2024-10300 - CERT CVE
ID CVE-2024-10300
Sažetak A vulnerability, which was classified as critical, has been found in PHPGurukul Medical Card Generation System 1.0. This issue affects some unknown processing of the file /admin/view-enquiry.php of the component View Enquiry Page. The manipulation of the argument viewid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Reference
CVSS
Base: 5.8
Impact: 6.4
Exploitability:6.4
Pristup
VektorSloženostAutentikacija
NETWORK LOW MULTIPLE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL PARTIAL PARTIAL
CVSS vektor AV:N/AC:L/Au:M/C:P/I:P/A:P
Zadnje važnije ažuriranje 25-10-2024 - 18:49
Objavljeno 23-10-2024 - 20:15