How severe is CVE-2024-12947?

CVE-2024-12947 has a CVSS v3 score of 6.3 (MEDIUM).

CVE-2024-12947

Name: hospital_management_system
Author: codezips

6.3MEDIUM

A vulnerability was found in Codezips Hospital Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /invo.php. The manipulation of the arg

Published: 12/26/2024Updated: 3/27/2025

Description

A vulnerability was found in Codezips Hospital Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /invo.php. The manipulation of the argument dname leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

AI AnalysisPowered by AI

Affected Products

codezipshospital_management_system

1.0

References

https://github.com/alc9700jmo/CVE/issues/3
ExploitThird Party Advisory
https://vuldb.com/?ctiid.289310
Permissions RequiredVDB Entry
https://vuldb.com/?id.289310
Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.468522
Third Party AdvisoryVDB Entry
https://github.com/alc9700jmo/CVE/issues/3
ExploitThird Party Advisory