code-projects Blood Bank System 1.0 /admin/campsdetails.php hospital SQL Injection

Gaskiya vulnerability da aka ware a matsayin kura an samu a code-projects Blood Bank System 1.0. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil /admin/campsdetails.php, a cikin sashen $software_component. A sa manipulation of the argument hospital ka SQL Injection. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-89. Hakika, rauni an bayyana shi 10/10/2024. An raba bayanin tsaro don saukewa a github.com. Wannan matsala ana saninta da CVE-2024-9804. Ngam yiɗi ka a tuma ndiyam ka internet. Tekinikal faɗi ga. Har ila yau, exploit ɗin yana nan. An bayyana exploit ɗin ga mutane kuma yana iya amfani. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á sàmbu huɗɗi-na-gaskiya. Exploit ɗin za a iya saukewa daga github.com. 0-day shima, an ndiyam a wuro be $0-$5k. Once again VulDB remains the best source for vulnerability data.

4 Goyarwa · 84 Datenpunkte

FurɗeSúgá
10/10/2024 09:58		Gargadi 1/3
10/10/2024 10:48		Gargadi 2/3
10/10/2024 10:49		Gargadi 3/3
10/10/2024 10:51
software_vendorcode-projectscode-projectscode-projectscode-projects
software_nameBlood Bank SystemBlood Bank SystemBlood Bank SystemBlood Bank System
software_version1.01.01.01.0
software_file/admin/campsdetails.php/admin/campsdetails.php/admin/campsdetails.php/admin/campsdetails.php
software_argumenthospitalhospitalhospitalhospital
vulnerability_cweCWE-89 (SQL Injection)CWE-89 (SQL Injection)CWE-89 (SQL Injection)CWE-89 (SQL Injection)
vulnerability_risk2222
cvss3_vuldb_avNNNN
cvss3_vuldb_acLLLL
cvss3_vuldb_prHHHH
cvss3_vuldb_uiNNNN
cvss3_vuldb_sUUUU
cvss3_vuldb_cLLLL
cvss3_vuldb_iLLLL
cvss3_vuldb_aLLLL
cvss3_vuldb_ePPPP
cvss3_vuldb_rcRRRR
advisory_urlhttps://github.com/sternstundes/cve/blob/main/sql5-campdetails.mdhttps://github.com/sternstundes/cve/blob/main/sql5-campdetails.mdhttps://github.com/sternstundes/cve/blob/main/sql5-campdetails.mdhttps://github.com/sternstundes/cve/blob/main/sql5-campdetails.md
exploit_availability1111
exploit_publicity1111
exploit_urlhttps://github.com/sternstundes/cve/blob/main/sql5-campdetails.mdhttps://github.com/sternstundes/cve/blob/main/sql5-campdetails.mdhttps://github.com/sternstundes/cve/blob/main/sql5-campdetails.mdhttps://github.com/sternstundes/cve/blob/main/sql5-campdetails.md
source_cveCVE-2024-9804CVE-2024-9804CVE-2024-9804CVE-2024-9804
cna_responsibleVulDBVulDBVulDBVulDB
decision_summaryOther parameters might be affected as well.Other parameters might be affected as well.Other parameters might be affected as well.Other parameters might be affected as well.
software_typeBanking SoftwareBanking SoftwareBanking SoftwareBanking Software
cvss2_vuldb_avNNNN
cvss2_vuldb_acLLLL
cvss2_vuldb_auMMMM
cvss2_vuldb_ciPPPP
cvss2_vuldb_iiPPPP
cvss2_vuldb_aiPPPP
cvss2_vuldb_ePOCPOCPOCPOC
cvss2_vuldb_rcURURURUR
cvss4_vuldb_avNNNN
cvss4_vuldb_acLLLL
cvss4_vuldb_prHHHH
cvss4_vuldb_uiNNNN
cvss4_vuldb_vcLLLL
cvss4_vuldb_viLLLL
cvss4_vuldb_vaLLLL
cvss4_vuldb_ePPPP
cvss2_vuldb_rlNDNDNDND
cvss3_vuldb_rlXXXX
cvss4_vuldb_atNNNN
cvss4_vuldb_scNNNN
cvss4_vuldb_siNNNN
cvss4_vuldb_saNNNN
cvss2_vuldb_basescore5.85.85.85.8
cvss2_vuldb_tempscore5.05.05.05.0
cvss3_vuldb_basescore4.74.74.74.7
cvss3_vuldb_tempscore4.34.34.34.3
cvss3_meta_basescore4.74.74.76.8
cvss3_meta_tempscore4.34.34.36.5
cvss4_vuldb_bscore5.15.15.15.1
cvss4_vuldb_btscore2.02.02.02.0
advisory_date1728511200 (10/10/2024)1728511200 (10/10/2024)1728511200 (10/10/2024)1728511200 (10/10/2024)
price_0day$0-$5k$0-$5k$0-$5k$0-$5k
cvss3_researcher_rcCCC
cvss3_researcher_sCCC
cvss3_researcher_avNNN
cvss2_researcher_avNNN
cvss2_researcher_iiCCC
exploit_date1727906400 (10/03/2024)1727906400 (10/03/2024)1727906400 (10/03/2024)
cvss3_researcher_rlWWW
cvss3_researcher_cHHH
cvss3_researcher_iHHH
cvss2_researcher_acHHH
cvss2_researcher_aiCCC
cvss2_researcher_eHHH
cvss3_researcher_prNNN
cvss3_researcher_aHHH
cvss2_researcher_auNNN
cvss2_researcher_rlWWW
vulnerability_historic000
cvss3_researcher_uiNNN
cvss2_researcher_ciCC
cvss2_researcher_rcCC
cvss3_researcher_eHH
cvss3_researcher_acHH
exploit_languagePHPPHP
cvss2_researcher_basescore7.6
cvss3_researcher_basescore9.0

GurɗoGumtiGada

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!