Security Advisory

CVE-2020-24862

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-02 16:50:08

Last updated 2024-08-04 15:19:09

Assigner mitre

State PUBLISHED

Description

The catID parameter in Pharmacy Medical Store and Sale Point v1.0 has been found to be vulnerable to a Time-Based blind SQL injection via the /medical/inventories.php path which allows attackers to retrieve all databases.

← Browse all CVEs View on cve.org ↗