CVE-2024-10806 - CERT CVE
ID CVE-2024-10806
Sažetak A vulnerability was found in PHPGurukul Hospital Management System 4.0. It has been declared as problematic. This vulnerability affects unknown code of the file betweendates-detailsreports.php. The manipulation of the argument fromdate/todate leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Reference
CVSS
Base: 3.3
Impact: 2.9
Exploitability:6.4
Pristup
VektorSloženostAutentikacija
NETWORK LOW MULTIPLE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL NONE
CVSS vektor AV:N/AC:L/Au:M/C:N/I:P/A:N
Zadnje važnije ažuriranje 05-11-2024 - 16:04
Objavljeno 05-11-2024 - 01:15