CVE-2024-10991 Information

Description

A vulnerability which was classified as critical has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Reference

https://vuldb.com/?id.283457 https://vuldb.com/?ctiid.283457 https://vuldb.com/?submit.437393 https://github.com/ppp-src/CVE/issues/30