Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Harpia DiagSystem atualatendimento_jpeg.php resource injection
Vulnerability Description
A vulnerability classified as problematic has been found in Harpia DiagSystem 12. Affected is an unknown function of the file /diagsystem/PACS/atualatendimento_jpeg.php. The manipulation of the argument cod/codexame leads to improper control of resource identifiers. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
对资源描述符的控制不恰当(资源注入)
Vulnerability Title
Harpia DiagSystem 安全漏洞
Vulnerability Description
Harpia DiagSystem是Harpia公司的一款用于管理诊断诊所的软件。 Harpia DiagSystem 12版本存在安全漏洞,该漏洞源于/diagsystem/PACS/atualatendimento_jpeg.php位置的cod和codexame参数包含一个资源标识符的控制不当问题。
CVSS Information
N/A
Vulnerability Type
N/A