CVE-2023-4185

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 6, 2023

Updated: May 17, 2024

CWE ID 89

Summary

CVE-2023-4185 is a newly disclosed critical vulnerability affecting the SourceCodester Online Hospital Management System version 1.0. The issue lies within an unknown function of the file patientlogin.php, allowing attackers to execute SQL injection by manipulating the loginid/password argument. This vulnerability can be exploited remotely, and the exploit has been made public, increasing the risk of widespread attacks. The identifier for this vulnerability is VDB-236220.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sO6Bml
https://www.cve.org/CVERecord?id=CVE-2023-4185
https://nvd.nist.gov/vuln/detail/CVE-2023-4185

Back to Vulnerability Database

CVE-2023-4185

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations