CVE-2024-5516

MEDIUM(6.3)

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Risk Signal Score16/100 — NIEDRIG

CVSS 6.3 — Mittel

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

6.3

Technische Schwere

Beschreibung

A vulnerability was found in itsourcecode Online Blood Bank Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file massage.php. The manipulation of the argument bid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-266587.

Referenzen

https://github.com/ppp-src/ha/issues/3
https://vuldb.com/?ctiid.266587
https://vuldb.com/?id.266587
https://vuldb.com/?submit.346223
https://github.com/ppp-src/ha/issues/3
https://vuldb.com/?ctiid.266587
https://vuldb.com/?id.266587
https://vuldb.com/?submit.346223