CVE-2023-7172: PHPGurukul Hospital Management System Admin Dashboard sql injection
First published: Sat Dec 30 2023(Updated: )
A vulnerability, which was classified as critical, has been found in PHPGurukul Hospital Management System 1.0. Affected by this issue is some unknown functionality of the component Admin Dashboard. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-249356.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-7172?
CVE-2023-7172 is classified as a critical vulnerability.
What type of vulnerability is CVE-2023-7172?
CVE-2023-7172 is an SQL injection vulnerability affecting the Admin Dashboard.
Which software is affected by CVE-2023-7172?
CVE-2023-7172 affects PHPGurukul Hospital Management System version 1.0.
How can I mitigate CVE-2023-7172?
To mitigate CVE-2023-7172, it is recommended to update PHPGurukul Hospital Management System to a patched version.
Can CVE-2023-7172 be exploited remotely?
Yes, CVE-2023-7172 can be exploited remotely due to its nature as an SQL injection vulnerability.
- agent/references
- agent/type
- agent/first-publish-date
- agent/severity
- agent/title
- agent/weakness
- agent/author
- agent/description
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/softwarecombine
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/source
- vendor/phpgurukul
- canonical/phpgurukul hospital management system
- version/phpgurukul hospital management system/1.0