CVE-2024-40502

Опубликовано: 22 июл. 2024

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

SQL injection vulnerability in Hospital Management System Project in ASP.Net MVC 1 allows aremote attacker to execute arbitrary code via the btn_login_b_Click function of the Loginpage.aspx

Ссылки

https://itsourcecode.com/author/angeljudesuarez/
Product
https://itsourcecode.com/free-projects/asp/hospital-management-system-project-in-asp-net-mvc-with-source-code/
Product
https://packetstormsecurity.com/files/179583/Hospital-Management-System-Project-In-ASP.Net-MVC-1-SQL-Injection.html
Exploit
Third Party Advisory
https://itsourcecode.com/author/angeljudesuarez/
Product
https://itsourcecode.com/free-projects/asp/hospital-management-system-project-in-asp-net-mvc-with-source-code/
Product
https://packetstormsecurity.com/files/179583/Hospital-Management-System-Project-In-ASP.Net-MVC-1-SQL-Injection.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:angeljudesuarez:hospital_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03598

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-cr58-cprg-fhvm