2 matches found
CVE-2024-28320
CVE-2024-28320 affects Hospital Management System version 1.0. The vulnerability is an Insecure Direct Object Reference (IDOR) in the /patient/edit-user.php endpoint, enabling an attacker to manipulate user parameters to gain unauthorized access and perform modifications. The NVD entry lists CVSS...
Small Medical Offices Biggest Risk to Patient Data Security, Privacy
Small physician practices, much like their small commercial business counterparts, have been the primary source of health care related data breaches, according to an analysis of breaches from 2009 to October 2012 released today by the Health Information Trust Alliance HITRUST. These smaller medic...