CVE-2022-24136: Malicious File Upload
First published: Thu Mar 31 2022(Updated: )
Hospital Management System v1.0 is affected by an unrestricted upload of dangerous file type vulerability in treatmentrecord.php. To exploit, an attacker can upload any PHP file, and then execute it.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hospital Management System Project Hospital Management System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of the Hospital Management System?
The vulnerability ID is CVE-2022-24136.
What is the title of the vulnerability for the Hospital Management System?
The title of the vulnerability is 'Hospital Management System v1.0 is affected by an unrestricted upload of dangerous file type vulnerability in treatmentrecord.php.'
What is the severity of the Hospital Management System vulnerability?
The severity of the vulnerability is critical with a CVSS score of 9.8.
What is the affected software for the Hospital Management System vulnerability?
The affected software is Hospital Management System v1.0.
Is there a fix available for the Hospital Management System vulnerability?
A fix for the vulnerability has not been specified in the provided information. It is recommended to follow the guidelines provided by the software vendor or developer.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/hospital management system project
- canonical/hospital management system project hospital management system
- version/hospital management system project hospital management system/1.0