CVE-2024-32167 — Online Medicine Ordering System vulnerability

3 documents3 sources

Severity

9.1CRITICALNVD

EPSS

0.2%

top 64.03%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oretnom23 Online Medicine Ordering System

Timeline

PublishedJun 10

Description

Sourcecodester Online Medicine Ordering System 1.0 is vulnerable to Arbitrary file deletion vulnerability as the backend settings have the function of deleting pictures to delete any files.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages1 packages

▶NVDoretnom23/online_medicine_ordering_system1.0

🔴Vulnerability Details

GHSA

GHSA-xwj5-5q25-vqmg: Sourcecodester Online Medicine Ordering System 1↗2024-06-10

▶

CVEList

CVE-2024-32167: Sourcecodester Online Medicine Ordering System 1↗2024-06-10

▶