Lucene search
K

387 matches found

0day.today
0day.today
added 2024/04/15 12:0 a.m.461 views

OpenClinic GA 5.247.01 - Path Traversal (Authenticated) Vulnerability

Exploit Title: OpenClinic GA 5.247.01 - Path Traversal Authenticated Vendor Homepage: https://sourceforge.net/projects/open-clinic/ Software Link: https://sourceforge.net/projects/open-clinic/ Version: OpenClinic GA 5.247.01 Tested on: Windows 10, Windows 11 CVE: CVE-2023-40279 Details An issue w...

7.5CVSS7.1AI score0.0338EPSS
Exploits4
Exploit DB
Exploit DB
added 2024/04/15 12:0 a.m.337 views

OpenClinic GA 5.247.01 - Information Disclosure

Exploit Title: OpenClinic GA 5.247.01 - Information Disclosure Date: 2023-08-14 Exploit Author: VB Vendor Homepage: https://sourceforge.net/projects/open-clinic/ Software Link: https://sourceforge.net/projects/open-clinic/ Version: OpenClinic GA 5.247.01 Tested on: Windows 10, Windows 11 CVE:...

7.5CVSS7.6AI score0.03002EPSS
Exploits4
Exploit DB
Exploit DB
added 2024/04/15 12:0 a.m.332 views

OpenClinic GA 5.247.01 - Path Traversal (Authenticated)

Exploit Title: OpenClinic GA 5.247.01 - Path Traversal Authenticated Date: 2023-08-14 Exploit Author: V. B. Vendor Homepage: https://sourceforge.net/projects/open-clinic/ Software Link: https://sourceforge.net/projects/open-clinic/ Version: OpenClinic GA 5.247.01 Tested on: Windows 10, Windows 11...

7.5CVSS6.7AI score0.0338EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/04/15 12:0 a.m.421 views

OpenClinic GA 5.247.01 Information Disclosure

Exploit Title: OpenClinic GA 5.247.01 - Information Disclosure Date: 2023-08-14 Exploit Author: VB Vendor Homepage: https://sourceforge.net/projects/open-clinic/ Software Link: https://sourceforge.net/projects/open-clinic/ Version: OpenClinic GA 5.247.01 Tested on: Windows 10, Windows 11 CVE:...

7.4AI score0.03002EPSS
Exploits4
OSV
OSV
added 2024/03/19 1:15 p.m.7 views

CVE-2023-40279

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to main.do...

7.5CVSS5.8AI score0.0338EPSS
Exploits4References2
NVD
NVD
added 2024/03/19 1:15 p.m.28 views

CVE-2023-40279

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to main.do...

7.5CVSS6.4AI score0.0338EPSS
Exploits4References2
OSV
OSV
added 2024/03/19 12:15 p.m.4 views

CVE-2023-40278

An issue was discovered in OpenClinic GA 5.247.01. An Information Disclosure vulnerability has been identified in the printAppointmentPdf.jsp component of OpenClinic GA. By changing the AppointmentUid parameter, an attacker can determine whether a specific appointment exists based on the error...

7.5CVSS5.7AI score0.03002EPSS
Exploits4References2
NVD
NVD
added 2024/03/19 12:15 p.m.26 views

CVE-2023-40278

An issue was discovered in OpenClinic GA 5.247.01. An Information Disclosure vulnerability has been identified in the printAppointmentPdf.jsp component of OpenClinic GA. By changing the AppointmentUid parameter, an attacker can determine whether a specific appointment exists based on the error...

7.5CVSS6.3AI score0.03002EPSS
Exploits4References2
OSV
OSV
added 2024/03/19 1:15 a.m.4 views

CVE-2023-40275

An issue was discovered in OpenClinic GA 5.247.01. It allows retrieval of patient lists via queries such as findFirstname= to common/search/searchByAjax/patientslistShow.jsp...

9.1CVSS5.8AI score0.00917EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/03/19 1:15 a.m.4 views

CVE-2023-40276

An issue was discovered in OpenClinic GA 5.247.01. An Unauthenticated File Download vulnerability has been discovered in pharmacy/exportFile.jsp...

9.1CVSS5.7AI score0.00736EPSS
Exploits1References3
NVD
NVD
added 2024/03/19 1:15 a.m.18 views

CVE-2023-40275

An issue was discovered in OpenClinic GA 5.247.01. It allows retrieval of patient lists via queries such as findFirstname= to common/search/searchByAjax/patientslistShow.jsp...

9.1CVSS6.5AI score0.00917EPSS
Exploits0References2
NVD
NVD
added 2024/03/19 1:15 a.m.16 views

CVE-2023-40280

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to popup.jsp...

7.5CVSS6.5AI score0.00848EPSS
Exploits1References2
NVD
NVD
added 2024/03/19 1:15 a.m.15 views

CVE-2023-40277

An issue was discovered in OpenClinic GA 5.247.01. A Reflected Cross-Site Scripting XSS vulnerability has been discovered in the login.jsp message parameter...

6.1CVSS5.6AI score0.0045EPSS
Exploits1References2
NVD
NVD
added 2024/03/19 1:15 a.m.16 views

CVE-2023-40276

An issue was discovered in OpenClinic GA 5.247.01. An Unauthenticated File Download vulnerability has been discovered in pharmacy/exportFile.jsp...

9.1CVSS6.6AI score0.00736EPSS
Exploits1References2
OSV
OSV
added 2024/03/19 1:15 a.m.3 views

CVE-2023-40276

An issue was discovered in OpenClinic GA 5.247.01. An Unauthenticated File Download vulnerability has been discovered in pharmacy/exportFile.jsp...

9.1CVSS5.7AI score0.00736EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2024/03/19 1:15 a.m.4 views

CVE-2023-40277

An issue was discovered in OpenClinic GA 5.247.01. A Reflected Cross-Site Scripting XSS vulnerability has been discovered in the login.jsp message parameter...

6.1CVSS5.7AI score0.0045EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2024/03/19 1:15 a.m.4 views

CVE-2023-40280

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to popup.jsp...

7.5CVSS5.8AI score0.00848EPSS
Exploits1References3
OSV
OSV
added 2024/03/19 1:15 a.m.10 views

CVE-2023-40280

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to popup.jsp...

7.5CVSS5.8AI score0.00848EPSS
Exploits1References2
OSV
OSV
added 2024/03/19 1:15 a.m.7 views

CVE-2023-40277

An issue was discovered in OpenClinic GA 5.247.01. A Reflected Cross-Site Scripting XSS vulnerability has been discovered in the login.jsp message parameter...

6.1CVSS5.7AI score0.0045EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/03/19 12:0 a.m.14 views

CVE-2023-40278

An issue was discovered in OpenClinic GA 5.247.01. An Information Disclosure vulnerability has been identified in the printAppointmentPdf.jsp component of OpenClinic GA. By changing the AppointmentUid parameter, an attacker can determine whether a specific appointment exists based on the error...

6.6AI score0.03002EPSS
Exploits4References2
Rows per page
Query Builder