CVE-2024-10300: PHPGurukul Medical Card Generation System View Enquiry Page view-enquiry.php sql injection
First published: Wed Oct 23 2024(Updated: )
A vulnerability, which was classified as critical, has been found in PHPGurukul Medical Card Generation System 1.0. This issue affects some unknown processing of the file /admin/view-enquiry.php of the component View Enquiry Page. The manipulation of the argument viewid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Anujkumar Medical Card Generation System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-10300?
CVE-2024-10300 is classified as a critical vulnerability.
What components are affected by CVE-2024-10300?
CVE-2024-10300 affects the View Enquiry Page in PHPGurukul Medical Card Generation System version 1.0.
How do I fix CVE-2024-10300?
To fix CVE-2024-10300, update your PHPGurukul Medical Card Generation System to the latest version that addresses this vulnerability.
What type of attack can exploit CVE-2024-10300?
CVE-2024-10300 can be exploited through SQL injection due to improper handling of the viewid parameter.
When was CVE-2024-10300 published?
CVE-2024-10300 was published in 2024.
- agent/weakness
- agent/references
- agent/title
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- agent/event
- agent/severity
- agent/last-modified-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/phpgurukul
- canonical/anujkumar medical card generation system
- version/anujkumar medical card generation system/1.0