code-projects Patient Record Management System 1.0 login.php ଉପଭୋକ୍ତାଙ୍କ ନାମ SQL ଇଞ୍ଜେକ୍ସନ

Dogoggorri kan akka ଜଟିଳ jedhamuun ramadame code-projects Patient Record Management System 1.0 keessatti argameera. Miidhamni argame is hojii hin beekamne faayilii login.php keessa. Wanti jijjiirame irratti ଉପଭୋକ୍ତାଙ୍କ ନାମ gara SQL ଇଞ୍ଜେକ୍ସନ geessa. Rakkoo ibsuuf CWE yoo fayyadamte gara CWE-89 si geessa. Odeeffannoon kun yeroo 09/20/2024 maxxanfameera. Odeeffannoon kun buufachuuf github.com irratti argama. Dogoggorri kun CVE-2024-9034 jedhamee waamama. Weerara fageenya irraa jalqabuu ni danda'ama. Ibsa teeknikaa ni jira. Waan dabalataa ta’een, meeshaa balaa kana fayyadamuuf ni jira. Qorannoo miidhaa (exploit) uummataaf ifa taasifameera, kanaafis fayyadamuu ni danda'ama. Ammas, gatii exploit might be approx. USD $0-$5k yeroo ammaa irratti argamuu danda'a. ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ ta’uu isaa ibsameera. Exploit github.com irraa buufachuun ni danda'ama. Akka 0-daytti, gatiin isaa daldala dhoksaa keessatti $0-$5k akka ta'e tilmaamameera. If you want to get best quality of vulnerability data, you may have to visit VulDB.

5 ଆଡାପ୍ଟେସନ୍ · 88 ପଏଣ୍ଟ

ଫିଲ୍ଡସୃଷ୍ଟି ହୋଇଛି
09/20/2024 09:55 AM		ଅଦ୍ୟତନ 1/4
09/21/2024 03:48 PM		ଅଦ୍ୟତନ 2/4
09/27/2024 04:18 AM		ଅଦ୍ୟତନ 3/4
08/28/2025 01:38 AM		ଅଦ୍ୟତନ 4/4
08/28/2025 10:09 AM
software_vendorcode-projectscode-projectscode-projectscode-projectscode-projects
software_namePatient Record Management SystemPatient Record Management SystemPatient Record Management SystemPatient Record Management SystemPatient Record Management System
software_version1.01.01.01.01.0
software_filelogin.phplogin.phplogin.phplogin.phplogin.php
software_argumentusernameusernameusernameusernameusername
vulnerability_cweCWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ)
vulnerability_risk22222
cvss3_vuldb_avNNNNN
cvss3_vuldb_acLLLLL
cvss3_vuldb_prNNNNN
cvss3_vuldb_uiNNNNN
cvss3_vuldb_sUUUUU
cvss3_vuldb_cLLLLL
cvss3_vuldb_iLLLLL
cvss3_vuldb_aLLLLL
cvss3_vuldb_ePPPPP
cvss3_vuldb_rcRRRRR
advisory_urlhttps://github.com/keepgoing2077/cve/issues/1https://github.com/keepgoing2077/cve/issues/1https://github.com/keepgoing2077/cve/issues/1https://github.com/keepgoing2077/cve/issues/1https://github.com/keepgoing2077/cve/issues/1
exploit_availability11111
exploit_publicity11111
exploit_urlhttps://github.com/keepgoing2077/cve/issues/1https://github.com/keepgoing2077/cve/issues/1https://github.com/keepgoing2077/cve/issues/1https://github.com/keepgoing2077/cve/issues/1https://github.com/keepgoing2077/cve/issues/1
source_cveCVE-2024-9034CVE-2024-9034CVE-2024-9034CVE-2024-9034CVE-2024-9034
cna_responsibleVulDBVulDBVulDBVulDBVulDB
software_typeMedical Device SoftwareMedical Device SoftwareMedical Device SoftwareMedical Device SoftwareMedical Device Software
cvss2_vuldb_avNNNNN
cvss2_vuldb_acLLLLL
cvss2_vuldb_auNNNNN
cvss2_vuldb_ciPPPPP
cvss2_vuldb_iiPPPPP
cvss2_vuldb_aiPPPPP
cvss2_vuldb_ePOCPOCPOCPOCPOC
cvss2_vuldb_rcURURURURUR
cvss4_vuldb_avNNNNN
cvss4_vuldb_acLLLLL
cvss4_vuldb_prNNNNN
cvss4_vuldb_uiNNNNN
cvss4_vuldb_vcLLLLL
cvss4_vuldb_viLLLLL
cvss4_vuldb_vaLLLLL
cvss4_vuldb_ePPPPP
cvss2_vuldb_rlNDNDNDNDND
cvss3_vuldb_rlXXXXX
cvss4_vuldb_atNNNNN
cvss4_vuldb_scNNNNN
cvss4_vuldb_siNNNNN
cvss4_vuldb_saNNNNN
cvss2_vuldb_basescore7.57.57.57.57.5
cvss2_vuldb_tempscore6.46.46.46.46.4
cvss3_vuldb_basescore7.37.37.37.37.3
cvss3_vuldb_tempscore6.66.66.66.66.6
cvss3_meta_basescore7.37.37.37.37.3
cvss3_meta_tempscore6.66.96.96.96.9
cvss4_vuldb_bscore6.96.96.96.96.9
cvss4_vuldb_btscore5.55.55.55.55.5
advisory_date1726783200 (09/20/2024)1726783200 (09/20/2024)1726783200 (09/20/2024)1726783200 (09/20/2024)1726783200 (09/20/2024)
price_0day$0-$5k$0-$5k$0-$5k$0-$5k$0-$5k
cve_nvd_summaryA vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
cvss3_cna_avNNNN
cvss3_cna_acLLLL
cvss3_cna_prNNNN
cvss3_cna_uiNNNN
cvss3_cna_sUUUU
cvss3_cna_cLLLL
cvss3_cna_iLLLL
cvss3_cna_aLLLL
cvss3_cna_basescore7.37.37.37.3
cvss2_cna_avNNNN
cvss2_cna_acLLLL
cvss2_cna_auNNNN
cvss2_cna_ciPPPP
cvss2_cna_iiPPPP
cvss2_cna_aiPPPP
cvss2_cna_basescore7.57.57.57.5
cve_nvd_summaryesSe ha encontrado una vulnerabilidad en code-projects Patient Record Management System 1.0 y se ha clasificado como crítica. Este problema afecta a algunas funciones desconocidas del archivo login.php. La manipulación del argumento username provoca una inyección SQL. El ataque puede ejecutarse de forma remota. El exploit se ha hecho público y puede utilizarse.Se ha encontrado una vulnerabilidad en code-projects Patient Record Management System 1.0 y se ha clasificado como crítica. Este problema afecta a algunas funciones desconocidas del archivo login.php. La manipulación del argumento username provoca una inyección SQL. El ataque puede ejecutarse de forma remota. El exploit se ha hecho público y puede utilizarse.Se ha encontrado una vulnerabilidad en code-projects Patient Record Management System 1.0 y se ha clasificado como crítica. Este problema afecta a algunas funciones desconocidas del archivo login.php. La manipulación del argumento username provoca una inyección SQL. El ataque puede ejecutarse de forma remota. El exploit se ha hecho público y puede utilizarse.
euvd_idEUVD-2024-49679EUVD-2024-49679
cvss4_cna_avN
cvss4_cna_acL
cvss4_cna_atN
cvss4_cna_prN
cvss4_cna_uiN
cvss4_cna_vcL
cvss4_cna_viL
cvss4_cna_vaL
cvss4_cna_scN
cvss4_cna_siN
cvss4_cna_saN
cvss4_cna_bscore6.9

ପଛକୁସମୀକ୍ଷାଆହୁରି ଦୂରରେ

Might our Artificial Intelligence support you?

Check our Alexa App!