CVE-2024-10297: PHPGurukul Medical Card Generation System Managecard Edit Image Page changeimage.php sql injection
First published: Wed Oct 23 2024(Updated: )
A vulnerability was found in PHPGurukul Medical Card Generation System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/changeimage.php of the component Managecard Edit Image Page. The manipulation of the argument editid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Anujkumar Medical Card Generation System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-10297?
CVE-2024-10297 has been rated as critical.
What component is affected by CVE-2024-10297?
CVE-2024-10297 affects the Managecard Edit Image Page functionality in the file /admin/changeimage.php.
How does CVE-2024-10297 manifest?
The vulnerability in CVE-2024-10297 is caused by manipulation of the argument editid.
Who is the vendor for the affected product in CVE-2024-10297?
The vendor for the affected product in CVE-2024-10297 is PHPGurukul.
What product is impacted by CVE-2024-10297?
CVE-2024-10297 affects the PHPGurukul Medical Card Generation System version 1.0.
- agent/title
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/first-publish-date
- agent/severity
- agent/author
- agent/event
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/phpgurukul
- canonical/anujkumar medical card generation system