Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenClinic version 0.8.2 is affected by a medical/test_new.php insecure file upload vulnerability. This vulnerability allows authenticated users (with substantial privileges) to upload malicious files, such as PHP web shells, which can lead to arbitrary code execution on the application server.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenClinic 代码问题漏洞
Vulnerability Description
OpenClinic GA是一套开源的医院信息管理系统。该系统支持财务管理、临床管理和实验室管理等功能。 OpenClinic 0.8.2版本存在代码问题漏洞,该漏洞源于medical test new.php不安全文件上传漏洞的影响。此漏洞允许经过身份验证的用户(具有实际特权)上传恶意文件,如PHP web shell,这可能导致在应用服务器上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A