CVEs-PoC/2020/CVE-2020-27229.md at dc6e2cf7158eeb24cfecb4d64f4f1da9a8a732e2

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-06-03 00:28:04 +02:00

Files

T

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findPersonID parameter in ‘‘patientslist.do’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

POC

Reference

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1205

Github

No PoCs found on GitHub currently.

929 B Raw Blame History Unescape Escape

CVE-2020-27229

Description

POC

Reference

Github

929 B

Raw Blame History