Published on: Not Yet Published
Last Modified on: 11/16/2022 03:46:00 PM UTC
CVE-2022-3956Source: Mitre Source: NIST CVE.ORG Print: PDF
Certain versions of Hhims from Hhims Project contain the following vulnerability:
A vulnerability classified as critical has been found in tsruban HHIMS 2.1. Affected is an unknown function of the component Patient Portrait Handler. The manipulation of the argument PID leads to sql injection. It is possible to launch the attack remotely. It is recommended to apply a patch to fix this issue. VDB-213462 is the identifier assigned to this vulnerability.
- CVE-2022-3956 has been assigned by [email protected] to track the vulnerability - currently rated as CRITICAL severity.
- Affected Vendor/Software: tsruban - HHIMS version 2.1
CVSS3 Score: 9.8 - CRITICAL
|SQL injection vulnerability exists in HHIMS V2.1 of patient medical record system · Issue #1 · tsruban/HHIMS · GitHub|| github.com |
|CVE-2022-3956 | tsruban HHIMS Patient Portrait sql injection|| vuldb.com |
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
No vendor comments have been submitted for this CVE