Security Advisory

CVE-2022-22296

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-24 13:11:53

Last updated 2024-08-03 03:07:50

Assigner mitre

State PUBLISHED

Description

Sourcecodester Hospitals Patient Records Management System 1.0 is vulnerable to Insecure Permissions via the id parameter in manage_user endpoint. Simply change the value and data of other users can be displayed.

← Browse all CVEs View on cve.org ↗