13 matches found
EUVD-2020-19758
Malware in sbrugna...
OpenClinic GA SQL Injection Vulnerability (CNVD-2021-34994)
OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. An SQL injection vulnerability exists in the immoComment parameter in listImmoLabels.jsp in OpenClinic GA version...
OpenClinic GA SQL Injection Vulnerability (CNVD-2021-34996)
OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. An SQL injection vulnerability exists in the immoBuyer parameter in listImmoLabels.jsp in OpenClinic GA version...
CVE-2020-27245
An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoBuyer parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this...
CVE-2020-27244
An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoCode parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerabili...
CVE-2020-27243
An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoService parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this...
CVE-2020-27243
OpenClinic GA 5.173.3 contains authenticated SQL injection flaws in the listImmoLabels.jsp page. The vulnerabilities arise from building SQL with user-supplied parameters (e.g., immoService, immoLocation, immoCode, immoBuyer, immoComment) and then executing via a prepared statement, enabling inje...
CVE-2020-27242
An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoLocation parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this...
OpenClinic GA web portal multiple SQL injection vulnerabilities in 'listImmoLabels.jsp' page
Summary A number of exploitable SQL injection vulnerabilities exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability. Tested Versions...
OpenClinic GA SQL注入漏洞
OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. An SQL injection vulnerability exists in the immoService parameter in listImmoLabels.jsp in OpenClinic GA version...
OpenClinic GA SQL注入漏洞
OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. An SQL injection vulnerability exists in the immoLocation parameter in listImmoLabels.jsp in OpenClinic GA version...
OpenClinic GA SQL注入漏洞
OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. An SQL injection vulnerability exists in the immoBuyer parameter in listImmoLabels.jsp in OpenClinic GA version...
OpenClinic GA SQL注入漏洞
OpenClinic GA is an open source hospital information management system. The system supports financial management, clinical management and laboratory management and other functions. An SQL injection vulnerability exists in the immoComment parameter in listImmoLabels.jsp in OpenClinic GA version...