6 matches found
CVE-2022-2297
A vulnerability, which was classified as critical, was found in SourceCodester Clinics Patient Management System 2.0. Affected is an unknown function of the file /pms/updateuser.php?userid=1. The manipulation of the argument profilepicture with the input leads to unrestricted upload. It is possib...
CVE-2022-2297
creationtimestamp| type| source ---|---|--- 2022-07-12 20:25:18+00:00| seen| https://t.me/cibsecurity/46073 2025-05-21 15:50:12+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/clinicpmssqlitorce.rb 2025-05-22 21:02:16+00:00| seen|...
CVE-2022-2297
A vulnerability, which was classified as critical, was found in SourceCodester Clinics Patient Management System 2.0. Affected is an unknown function of the file /pms/updateuser.php?userid=1. The manipulation of the argument profilepicture with the input leads to unrestricted upload. It is possib...
CVE-2022-2297
CVE-2022-2297 affects SourceCodester Clinics Patient Management System 2.0. An unrestricted file upload vulnerability exists in the update_user.php?user_id=1 flow where manipulating the profile_picture parameter with input like enables remote code execution. Public PoCs and exploit activity are ...
CVE-2022-2297 SourceCodester Clinics Patient Management System unrestricted upload
A vulnerability, which was classified as critical, was found in SourceCodester Clinics Patient Management System 2.0. Affected is an unknown function of the file /pms/updateuser.php?userid=1. The manipulation of the argument profilepicture with the input leads to unrestricted upload. It is possib...
CVE-2022-2297 SourceCodester Clinics Patient Management System unrestricted upload
A vulnerability, which was classified as critical, was found in SourceCodester Clinics Patient Management System 2.0. Affected is an unknown function of the file /pms/updateuser.php?userid=1. The manipulation of the argument profilepicture with the input leads to unrestricted upload. It is possib...