CVE-2024-8565

🗓️ 07 Sep 2024 22:31:04Reported by VulDBType

cve🔗 web.nvd.nist.gov👁 45 Views🌐 WEB

Vulnerability in SourceCodesters Clinics Patient Management System 2.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2024-8565	8 Sep 202402:01	–	circl
CNNVD	SourceCodester Clinics Patient Management System 安全漏洞	7 Sep 202400:00	–	cnnvd
Cvelist	CVE-2024-8565 SourceCodesters Clinics Patient Management System print_diseases.php sql injection	7 Sep 202422:31	–	cvelist
EUVD	EUVD-2024-49269	3 Oct 202520:07	–	euvd
NVD	CVE-2024-8565	7 Sep 202423:15	–	nvd
Positive Technologies	PT-2024-39102 · Sourcecodester · Sourcecodester Clinics Patient Management System	7 Sep 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-8565	4 Feb 202522:26	–	redhatcve
Vulnrichment	CVE-2024-8565 SourceCodesters Clinics Patient Management System print_diseases.php sql injection	7 Sep 202422:31	–	vulnrichment

NVD

Vulners

Vulnrichment

Node

oretnom23 clinic's_patient_management_systemMatch2.0

[
  {
    "vendor": "SourceCodesters",
    "product": "Clinics Patient Management System",
    "versions": [
      {
        "version": "2.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/gurudattch/CVEs/blob/main/Sourcecodester-Clinic's-Patient-Management-System-SQLi.md
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

Parameter	Position	Path	Description	CWE
disease	query param	/print_diseases.php	SQL injection via manipulation of disease/from/to parameters in print_diseases.php	CWE-89
from	query param	/print_diseases.php	SQL injection via manipulation of disease/from/to parameters in print_diseases.php	CWE-89
to	query param	/print_diseases.php	SQL injection via manipulation of disease/from/to parameters in print_diseases.php	CWE-89

10 Sep 2024 15:40Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.3 - 9.8

CVSS 46.9

CVSS 27.5

CVSS 37.3

EPSS0.00104

SSVC

CWE-89