CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-10297 – PHPGurukul Medical Card Generation System Managecard Edit Image Page changeimage.php sql injection
https://notcve.org/view.php?id=CVE-2024-10297
23 Oct 2024 — A vulnerability was found in PHPGurukul Medical Card Generation System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/changeimage.php of the component Managecard Edit Image Page. The manipulation of the argument editid leads to sql injection. The attack may be launched remotely. • https://phpgurukul.com • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-10296 – PHPGurukul Medical Card Generation System Report of Medical Card Page card-bwdates-reports-details.php sql injection
https://notcve.org/view.php?id=CVE-2024-10296
23 Oct 2024 — A vulnerability was found in PHPGurukul Medical Card Generation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/card-bwdates-reports-details.php of the component Report of Medical Card Page. The manipulation of the argument fromdate/todate leads to sql injection. The attack can be launched remotely. • https://vuldb.com/?id.281563 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •