CVE Vulnerabilities

CVE-2022-25402

Published: Feb 24, 2022 | Modified: Nov 21, 2024
CVSS 3.x
9.1
CRITICAL
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

An incorrect access control issue in HMS v1.0 allows unauthenticated attackers to read and modify all PHP files.

Affected Software

Name Vendor Start Version End Version
Hospital_management_system Hospital_management_system_project 1.0 (including) 1.0 (including)

References