CVE-2022-36202

CVE-2022-36202

EPSS 0.9%

Doctor's Appointment System1.0 is vulnerable to Incorrect Access Control via edoc/patient/settings.php. The settings.php is affected by Broken Access Control (IDOR) via id= parameter.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://hshnudr.com https://github.com/aznull/CVEs https://www.sourcecodester.com/hashenudara/simple-doctors-appointment-project.html