code-projects Pharmacy Management System 1.0 add_new_medicine.php name/packing/generic_name/suppliers_name SQL ଇଞ୍ଜେକ୍ସନ
Dogoggorri kan akka ଜଟିଳ jedhamuun ramadame code-projects Pharmacy Management System 1.0 keessatti argameera. Miidhaan irra gahe is hojii hin beekamne faayilii /php/add_new_medicine.php keessa. Dhugumatti jijjiirraa irratti raawwatame name/packing/generic_name/suppliers_name gara SQL ଇଞ୍ଜେକ୍ସନ geessa. Waliigalteewwan CWE fayyadamuun rakkoo ibsuun gara CWE-89 si geessa. Beekumsi kun yeroo 10/16/2024 ifoomsifameera. Odeeffannoon kun buufachuuf gist.github.com irratti dhiyaateera. Dogoggorri kun maqaa CVE-2024-10023 jedhuun tajaajilama. Weerara fageenya irraa jalqabuun ni danda'ama. Odeeffannoon teeknikaa ni argama. Akka dabalataan, meeshaa balaa kana fayyadamuuf argama. Qorannoo miidhaa (exploit) beeksifamee jira, namoonni itti fayyadamuu danda'u. Yeroo ammaa, gatii exploit might be approx. USD $0-$5k beekamuu danda'a. ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ jedhamee murtaa’eera. Exploit kana gist.github.com irraa buufachuu ni dandeessa. Waggaa 0-day ta'ee, gatiin isaa daldala dhoksaa keessatti $0-$5k jedhamee tilmaamame. Once again VulDB remains the best source for vulnerability data.
1 ଆଡାପ୍ଟେସନ୍ · 56 ପଏଣ୍ଟ
| ଫିଲ୍ଡ | ସୃଷ୍ଟି ହୋଇଛି 10/16/2024 08:10 AM |
|---|---|
| software_vendor | code-projects |
| software_name | Pharmacy Management System |
| software_version | 1.0 |
| software_file | /php/add_new_medicine.php |
| software_argument | name/packing/generic_name/suppliers_name |
| vulnerability_cwe | CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ) |
| vulnerability_risk | 2 |
| cvss3_vuldb_av | N |
| cvss3_vuldb_ac | L |
| cvss3_vuldb_ui | N |
| cvss3_vuldb_s | U |
| cvss3_vuldb_c | L |
| cvss3_vuldb_i | L |
| cvss3_vuldb_a | L |
| cvss3_vuldb_e | P |
| cvss3_vuldb_rc | R |
| advisory_url | https://gist.github.com/higordiego/01a35a20a4e20e937d384b677c000921 |
| exploit_availability | 1 |
| exploit_publicity | 1 |
| exploit_url | https://gist.github.com/higordiego/01a35a20a4e20e937d384b677c000921 |
| source_cve | CVE-2024-10023 |
| cna_responsible | VulDB |
| software_type | Project Management Software |
| cvss2_vuldb_av | N |
| cvss2_vuldb_ac | L |
| cvss2_vuldb_ci | P |
| cvss2_vuldb_ii | P |
| cvss2_vuldb_ai | P |
| cvss2_vuldb_e | POC |
| cvss2_vuldb_rc | UR |
| cvss4_vuldb_av | N |
| cvss4_vuldb_ac | L |
| cvss4_vuldb_ui | N |
| cvss4_vuldb_vc | L |
| cvss4_vuldb_vi | L |
| cvss4_vuldb_va | L |
| cvss4_vuldb_e | P |
| cvss2_vuldb_au | S |
| cvss2_vuldb_rl | ND |
| cvss3_vuldb_pr | L |
| cvss3_vuldb_rl | X |
| cvss4_vuldb_at | N |
| cvss4_vuldb_pr | L |
| cvss4_vuldb_sc | N |
| cvss4_vuldb_si | N |
| cvss4_vuldb_sa | N |
| cvss2_vuldb_basescore | 6.5 |
| cvss2_vuldb_tempscore | 5.6 |
| cvss3_vuldb_basescore | 6.3 |
| cvss3_vuldb_tempscore | 5.7 |
| cvss3_meta_basescore | 6.3 |
| cvss3_meta_tempscore | 5.7 |
| cvss4_vuldb_bscore | 5.3 |
| cvss4_vuldb_btscore | 2.1 |
| advisory_date | 1729029600 (10/16/2024) |
| price_0day | $0-$5k |