High severity7.6NVD Advisory· Published Apr 29, 2024· Updated Jun 17, 2026
CVE-2024-28320
CVE-2024-28320
Description
Insecure Direct Object References (IDOR) vulnerability in Hospital Management System 1.0 allows attackers to manipulate user parameters for unauthorized access and modifications via crafted POST request to /patient/edit-user.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/177326/Hospital-Management-System-1.0-Insecure-Direct-Object-Reference-Account-Takeover.htmlnvdExploitThird Party Advisory
- sospiro014.github.io/Hospital-Management-System-1.0-Insecure-Direct-Object-Reference-+-Account-TakeovernvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.