Unrated severityNVD Advisory· Published May 10, 2021· Updated Aug 4, 2024
CVE-2020-27229
CVE-2020-27229
Description
A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findPersonID parameter in ‘‘patientslist.do’ page is vulnerable to authenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 5.173.3
- Range: OpenClinic GA 5.173.3
Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2020-1205mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.