Unrated severityNVD Advisory· Published Apr 19, 2021· Updated Aug 4, 2024
CVE-2020-27241
CVE-2020-27241
Description
An exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3. The serialnumber parameter in the getAssets.jsp page is vulnerable to unauthenticated SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- OpenClinic GA/OpenClinic GAdescription
- Range: = 5.173.3
Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2020-1207mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.