A vulnerability, which was classified as critical, was...
Moderate severity
Unreviewed
Published
Nov 26, 2024
to the GitHub Advisory Database
•
Updated Dec 4, 2024
Description
Published by the National Vulnerability Database
Nov 26, 2024
Published to the GitHub Advisory Database
Nov 26, 2024
Last updated
Dec 4, 2024
A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management System 1.0. Affected is an unknown function of the file /backend/doc/his_doc_update-account.php. The manipulation of the argument doc_dpic leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
References