CVE-2023-4441

CVSS 3.0 Score 9.8 of 10 (critical)

Details

Published Aug 21, 2023

Updated: May 17, 2024

CWE ID 749

Summary

CVE-2023-4441 is a critical vulnerability affecting the SourceCodester Free Hospital Management System for Small Practices 1.0. This issue lies within the unknown code of the /patient/appointment.php file and can be exploited via sql injection,allowing remote attackers to manipulate the argument 'sheduledate'. This vulnerability, identified as VDB-237562, poses a significant threat due to its ability to be exploited remotely.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s0xp63
https://www.cve.org/CVERecord?id=CVE-2023-4441
https://nvd.nist.gov/vuln/detail/CVE-2023-4441

Back to Vulnerability Database

CVE-2023-4441

CVSS 3.0 Score 9.8 of 10 (critical)

Details

Summary

Advisories, Assessments, and Mitigations