3 matches found
CVE-2023-40279
An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to main.do...
OpenClinic GA 5.247.01 - Path Traversal (Authenticated) Vulnerability
Exploit Title: OpenClinic GA 5.247.01 - Path Traversal Authenticated Vendor Homepage: https://sourceforge.net/projects/open-clinic/ Software Link: https://sourceforge.net/projects/open-clinic/ Version: OpenClinic GA 5.247.01 Tested on: Windows 10, Windows 11 CVE: CVE-2023-40279 Details An issue w...
CVE-2023-40279
OpenClinic GA 5.247.01 has a directory path traversal vulnerability (CVE-2023-40279) via the Page parameter in GET /openclinic/main.do. Multiple connected sources describe potential access to arbitrary files and even execution in some contexts. No patch/version remediation details are provided in...