Lucene search
CVE-2024-4257
Vulnerability in BlueNet Clinical Browsing System 1.2.
Show more
| Reporter | Title | Published | Views | Family All 4 |
|---|---|---|---|---|
 | CVE-2024-4257 | 27 Apr 202416:15 | – | nvd |
 | CVE-2024-4257 BlueNet Technology Clinical Browsing System deleteStudy.php sql injection | 27 Apr 202416:00 | – | cvelist |
 | CVE-2024-4257 BlueNet Technology Clinical Browsing System deleteStudy.php sql injection | 27 Apr 202416:00 | – | vulnrichment |
 | BlueNet Technology Clinical Browsing System 1.2.1 - Sql Injection | 15 Jul 202418:21 | – | nuclei |
Node
[
{
"vendor": "BlueNet Technology",
"product": "Clinical Browsing System",
"versions": [
{
"version": "1.2.1",
"status": "affected"
}
]
}
]| Source | Link |
|---|---|
| github | www.github.com/GAO-UNO/cve/blob/main/sql.md |
| vuldb | www.vuldb.com/ |
| vuldb | www.vuldb.com/ |
| vuldb | www.vuldb.com/ |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| documentUniqueId | query param | /xds/deleteStudy.php | SQL injection vulnerability in deleteStudy.php file due to improper handling of the documentUniqueId parameter. | CWE-89 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo27 Apr 2024 16:15Current
7.3High risk
Vulners AI Score7.3
CVSS26.5
CVSS36.3
EPSS0.00065
SSVC