Unrated severityNVD Advisory· Published May 10, 2021· Updated Aug 4, 2024
CVE-2020-27230
CVE-2020-27230
Description
A number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findSector parameter in ‘‘patientslist.do’ page is vulnerable to authenticated SQL injection An attacker can make an authenticated HTTP request to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =5.173.3
- Range: OpenClinic GA 5.173.3
Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2020-1205mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.