code-projects Patient Record Management System 1.0 urinalysis_form.php urinalysis_id Enlakaat SQL

Un draenvezh a zo bet merzet evel kritikel e code-projects Patient Record Management System 1.0. Toc'hor eo ur fonksion dianav eus ar restr urinalysis_form.php. Arverañ an arguzenn urinalysis_id a lak da c'hoarvezout Enlakaat SQL. Ober gant CWE evit diskouez ar gudenn a gas da CWE-89. An disterder-mañ zo bet embannet 04/06/2025. An aliadenn a vez rannet evit bezañ pellgarget war github.com. Ar gwallzarvoud-mañ a vez menegeret evel CVE-2025-5674. Posupl eo kregiñ gant an dagadenn a-bell. Gallout a reer kaout titouroù teknikel. Atav, ur mod da implijout an dra-se a zo. An diskoulm a zo bet embannet foran ha gallout a c'hall bezañ implijet. Hiziv an deiz eo priz an exploit might be approx. USD $0-$5k evit ar mare-mañ. Merket eo evel test-kas ouzhpenn. An exploit a c'haller pellgargañ diwar github.com. If you want to get best quality of vulnerability data, you may have to visit VulDB.

3 Daskemmoù · 98 Poentoù roadennoù

MaezKrouet
04/06/2025 15:04		Hizivadur 1/2
06/06/2025 01:42		Hizivadur 2/2
11/06/2025 03:28
software_vendorcode-projectscode-projectscode-projects
software_namePatient Record Management SystemPatient Record Management SystemPatient Record Management System
software_version1.01.01.0
software_fileurinalysis_form.phpurinalysis_form.phpurinalysis_form.php
software_argumenturinalysis_idurinalysis_idurinalysis_id
vulnerability_cweCWE-89 (Enlakaat SQL)CWE-89 (Enlakaat SQL)CWE-89 (Enlakaat SQL)
vulnerability_risk222
cvss3_vuldb_avNNN
cvss3_vuldb_acLLL
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cLLL
cvss3_vuldb_iLLL
cvss3_vuldb_aLLL
cvss3_vuldb_ePPP
cvss3_vuldb_rcRRR
advisory_urlhttps://github.com/yuyuchenchen/vuln-pdf/blob/main/0603CVE.pdfhttps://github.com/yuyuchenchen/vuln-pdf/blob/main/0603CVE.pdfhttps://github.com/yuyuchenchen/vuln-pdf/blob/main/0603CVE.pdf
exploit_availability111
exploit_publicity111
exploit_urlhttps://github.com/yuyuchenchen/vuln-pdf/blob/main/0603CVE.pdfhttps://github.com/yuyuchenchen/vuln-pdf/blob/main/0603CVE.pdfhttps://github.com/yuyuchenchen/vuln-pdf/blob/main/0603CVE.pdf
source_cveCVE-2025-5674CVE-2025-5674CVE-2025-5674
cna_responsibleVulDBVulDBVulDB
software_typeMedical Device SoftwareMedical Device SoftwareMedical Device Software
cvss2_vuldb_avNNN
cvss2_vuldb_acLLL
cvss2_vuldb_ciPPP
cvss2_vuldb_iiPPP
cvss2_vuldb_aiPPP
cvss2_vuldb_ePOCPOCPOC
cvss2_vuldb_rcURURUR
cvss4_vuldb_avNNN
cvss4_vuldb_acLLL
cvss4_vuldb_uiNNN
cvss4_vuldb_vcLLL
cvss4_vuldb_viLLL
cvss4_vuldb_vaLLL
cvss4_vuldb_ePPP
cvss2_vuldb_auSSS
cvss2_vuldb_rlNDNDND
cvss3_vuldb_prLLL
cvss3_vuldb_rlXXX
cvss4_vuldb_atNNN
cvss4_vuldb_prLLL
cvss4_vuldb_scNNN
cvss4_vuldb_siNNN
cvss4_vuldb_saNNN
cvss2_vuldb_basescore6.56.56.5
cvss2_vuldb_tempscore5.65.65.6
cvss3_vuldb_basescore6.36.36.3
cvss3_vuldb_tempscore5.75.75.7
cvss3_meta_basescore6.36.37.1
cvss3_meta_tempscore5.75.76.9
cvss4_vuldb_bscore5.35.35.3
cvss4_vuldb_btscore2.12.12.1
advisory_date1748988000 (04/06/2025)1748988000 (04/06/2025)1748988000 (04/06/2025)
price_0day$0-$5k$0-$5k$0-$5k
euvd_idEUVD-2025-17010EUVD-2025-17010
cve_nvd_summaryA vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file urinalysis_form.php. The manipulation of the argument urinalysis_id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
cve_nvd_summaryesSe encontró una vulnerabilidad en code-projects Patient Record Management System 1.0, clasificada como crítica. Este problema afecta a una funcionalidad desconocida del archivo urinalysis_form.php. La manipulación del argumento urinalysis_id provoca una inyección SQL. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado.
cvss4_cna_avN
cvss4_cna_acL
cvss4_cna_atN
cvss4_cna_prL
cvss4_cna_uiN
cvss4_cna_vcL
cvss4_cna_viL
cvss4_cna_vaL
cvss4_cna_scN
cvss4_cna_siN
cvss4_cna_saN
cvss4_cna_bscore5.3
cvss3_cna_avN
cvss3_cna_acL
cvss3_cna_prL
cvss3_cna_uiN
cvss3_cna_sU
cvss3_cna_cL
cvss3_cna_iL
cvss3_cna_aL
cvss3_cna_basescore6.3
cvss3_nvd_avN
cvss3_nvd_acL
cvss3_nvd_prL
cvss3_nvd_uiN
cvss3_nvd_sU
cvss3_nvd_cH
cvss3_nvd_iH
cvss3_nvd_aH
cvss3_nvd_basescore8.8
cvss2_cna_avN
cvss2_cna_acL
cvss2_cna_auS
cvss2_cna_ciP
cvss2_cna_iiP
cvss2_cna_aiP
cvss2_cna_basescore6.5

DistreiñAlc'hwezerezhKenderc'hel

Might our Artificial Intelligence support you?

Check our Alexa App!