Sensitive Information Disclosure in PHPGurukul Hospital Management System by PHPGurukul
CVE-2020-22176
7.5HIGH
Summary
The PHPGurukul Hospital Management System v4.0 is exposed to sensitive information disclosure vulnerabilities across multiple components. This security flaw allows remote unauthenticated attackers to access sensitive user data without proper authorization, potentially leading to data breaches. It is crucial for administrators to patch this vulnerability to protect user data from unauthorized access.
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved