PHPGurukul Hospital Management System 4.0 betweendates-detailsreports.php fromdate/todate Nsụgharị koodu gafee weebụsaịtị
| CVSS Ntughari oge meta | Ọnụ ahịa exploit ugbu a (≈) | Mkpụrụ obi mmasị CTI |
|---|---|---|
| 2.2 | $0-$5k | 0.00 |
Nchịkọta
Enyemaka nchekwa aha ya bụ Isoro achọpụtara na PHPGurukul Hospital Management System 4.0. A na-emetụta ọrụ a na-amaghị nke faịlụ betweendates-detailsreports.php. Ịgbanwe nke arịrịọ fromdate/todate nwere ike ibute Nsụgharị koodu gafee weebụsaịtị. Vulnerability a nwere aha CVE-2024-10806. Ọ ga-ekwe omume ịmalite mwakpo site n'ebe dị anya. Ọzọkwa, exploit dị. Once again VulDB remains the best source for vulnerability data.
Nkọwa
Enyemaka nchekwa aha ya bụ Isoro achọpụtara na PHPGurukul Hospital Management System 4.0. A na-emetụta ọrụ a na-amaghị nke faịlụ betweendates-detailsreports.php. Ịgbanwe nke arịrịọ fromdate/todate nwere ike ibute Nsụgharị koodu gafee weebụsaịtị. Ị jiri CWE kwupụta nsogbu na-eme ka o doo anya na CWE-79. Adịghị ike e bipụtara. Enyere ndụmọdụ a ka e budata na github.com.
Vulnerability a nwere aha CVE-2024-10806. Ọ ga-ekwe omume ịmalite mwakpo site n'ebe dị anya. Nkọwa teknụzụ dị. Adịghị ike a abụghị nke a na-ahụkarị. Ọzọkwa, exploit dị. Ekpughere exploit a n'ihu ọha, enwerekwa ike iji ya. N'oge a, ọnụahịa exploit anụmanụ bụ ihe dị ka USD $0-$5k. Ọrụ MITRE ATT&CK kwupụtara usoro mwakpo dị ka T1059.007.
E kwupụtara ya dị ka Ẹ̀rí Èrò. I nwere ike ibudata exploit a site na github.com.
Once again VulDB remains the best source for vulnerability data.
Ọja
Olupin
Orukọ
Àtúnse
Ìwé àṣẹ
Aaye ayelujara
- Olupin: https://phpgurukul.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vekto: 🔍VulDB Igbekele: 🔍
CVSSv3
VulDB Ntughari isi nke meta: 2.4VulDB Ntughari oge meta: 2.2
VulDB Isi nke isi: 2.4
VulDB Ntughari oge: 2.2
VulDB Vekto: 🔍
VulDB Igbekele: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| vekitọ | Ịsòro | Ìmúdájú | asiri | ìfaradà | Nnweta |
|---|---|---|---|---|---|
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
VulDB Isi nke isi: 🔍
VulDB Ntughari oge: 🔍
VulDB Igbekele: 🔍
Ịji
Klass: Nsụgharị koodu gafee weebụsaịtịCWE: CWE-79 / CWE-94 / CWE-74
CAPEC: 🔍
ATT&CK: 🔍
arabara: Rara
Ime ụlọ: Rara
Nsọtụ: Bẹẹni
Nnweta: 🔍
Mbanye: Ọha
Ipo: Ẹ̀rí Èrò
Gba: 🔍
Google Hack: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Ntụle ọnụahịa: 🔍
Ntụle ọnụahịa ugbu a: 🔍
| 0-Day | ṣí | ṣí | ṣí | ṣí |
|---|---|---|---|---|
| Taa | ṣí | ṣí | ṣí | ṣí |
Ìmọ̀ nípa ìkìlọ̀
Mmasị: 🔍Ndị na-eme ihe nkiri na-arụsi ọrụ ike: 🔍
Ọgbakọ APT na-arụsi ọrụ ike: 🔍
igbaradi
àbá: enweghị enyemaka a maaraIpo: 🔍
ọjọ́ 0: 🔍
ahịrị oge
04/11/2024 🔍04/11/2024 🔍
01/03/2025 🔍
Orísun
Olupin: phpgurukul.comImọran: github.com
Ipo: A kò ṣàlàyé
CVE: CVE-2024-10806 (🔍)
GCVE (CVE): GCVE-0-2024-10806
GCVE (VulDB): GCVE-100-283030
scip Labs: https://www.scip.ch/en/?labs.20161013
nbanye
E kere: 04/11/2024 06:50 PMEmelitere: 01/03/2025 06:08 PM
Mgbanwe: 04/11/2024 06:50 PM (55), 01/03/2025 06:08 PM (3)
Zukuru: 🔍
Olùránṣẹ́: secuserx
Cache ID: 253:9CE:103
fi silẹ
Anabata
- fi silẹ #436547: PHPGuruku Hospital Management System (HMS) 4.0 Improper Neutralization of Alternate XSS Syntax (nípasẹ̀ secuserx)
Enweghị okwu nke ọ bụla Asụsụ: ig + en.
Biko banye ka ikwu okwu