Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/04 10:59 p.m.6 views

CVE-2024-0264

A vulnerability was found in SourceCodester Clinic Queuing System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /LoginRegistration.php. The manipulation of the argument formToken leads to authorization bypass. The attack can be initiated remotely. The...

9.8CVSS7AI score0.18224EPSS
Exploits5References1
Packet Storm
Packet Storm
added 2024/05/09 12:0 a.m.508 views

Clinic Queuing System 1.0 Remote Code Execution

Exploit Title: Clinic Queuing System 1.0 RCE Date: 2024/1/7 Exploit Author: Juan Marco Sanchez Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/16439/clinic-queuing-system-using-php-and-sqlite3-source-code-free-download.html Version: 1.0 Tested on...

9.8CVSS7.4AI score0.20938EPSS
Exploits6
0day.today
0day.today
added 2024/05/08 12:0 a.m.371 views

Clinic Queuing System 1.0 - Remote Code Execution Exploit

Exploit Title: Clinic Queuing System 1.0 RCE Exploit Author: Juan Marco Sanchez Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/16439/clinic-queuing-system-using-php-and-sqlite3-source-code-free-download.html Version: 1.0 Tested on: Debian Linux...

9.8CVSS7.4AI score0.20938EPSS
Exploits6
Circl
Circl
added 2024/01/07 6:21 a.m.4 views

CVE-2024-0264

creationtimestamp| type| source ---|---|--- 2024-01-07 06:21:22+00:00| seen| https://t.me/ctinow/164064 2024-01-08 22:29:49+00:00| seen| https://t.me/arpsyndicate/2689 2024-01-10 23:16:50+00:00| seen| https://t.me/ctinow/166204 2024-01-24 18:16:32+00:00| seen| https://t.me/ctinow/172969 2024-01-2...

9.8CVSS7.7AI score0.18224EPSS
Exploits5References5
CVE
CVE
added 2024/01/07 4:31 a.m.65 views

CVE-2024-0264

CVE-2024-0264 affects SourceCodester Clinic Queuing System 1.0 in the /LoginRegistration.php handling of formToken. The root cause is an authorization bypass due to a flawed validation of formToken (session vs. POST) that allows remote exploitation; multiple sources document this CVE and indicate...

9.8CVSS9.5AI score0.18224EPSS
Exploits5References4Affected Software1
Rows per page
Query Builder