4 matches found
CVE-2022-22296
Sourcecodester Hospital's Patient Records Management System 1.0 is vulnerable to Insecure Permissions via the id parameter in manageuser endpoint. Simply change the value and data of other users can be displayed...
CVE-2022-22296
creationtimestamp| type| source ---|---|--- 2022-11-17 15:30:32+00:00| seen| https://t.me/cibsecurity/36126...
CVE-2022-22296
Sourcecodester Hospital's Patient Records Management System 1.0 is vulnerable to Insecure Permissions via the id parameter in manageuser endpoint. Simply change the value and data of other users can be displayed...
CVE-2022-22296
CVE-2022-22296 affects Sourcecodester Hospital Patient Records Management System 1.0. The vulnerability is insecure permissions via the id parameter in the manage_user endpoint, enabling attackers to view data from other users. The connected sources describe this as a horizontal override/insecure...