Unrated severityNVD Advisory· Published Mar 3, 2024· Updated Aug 5, 2024
Bdtask Hospita AutoManager Investigation Report cross-site request forgery
CVE-2024-2134
Description
A vulnerability has been found in Bdtask Hospita AutoManager up to 20240223 and classified as problematic. This vulnerability affects unknown code of the file /investigation/delete/ of the component Investigation Report Handler. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-255496. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Affected products
2<=20240223+ 1 more
- (no CPE)range: <=20240223
- (no CPE)range: 20240223
Patches
Vulnerability mechanics
References
3- drive.google.com/file/d/1JZ9HXuXetQCpbM8O3LJ498lAo9FpoSrD/viewmitreexploit
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entry
News mentions
0No linked articles in our index yet.