cve/CVE-2023-24610.md at dd6a10065df501f0a524d47b55e162f16811ba93

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 4edef1e4c8 Update CVE sources 2024-05-28 08:49

2024-05-28 08:49:17 +00:00

Description

NOSH 4a5cfdb allows remote authenticated users to execute PHP arbitrary code via the "practice logo" upload feature. The client-side checks can be bypassed. This may allow attackers to steal Protected Health Information because the product is for health charting.

POC

Reference

No PoCs from references.

Github

https://github.com/abbisQQ/CVE-2023-24610
https://github.com/hktalent/TOP
https://github.com/k0mi-tg/CVE-POC
https://github.com/manas3c/CVE-POC
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/whoforget/CVE-POC
https://github.com/youwizard/CVE-POC

947 B Raw Blame History

CVE-2023-24610

Description

POC

Reference

Github

947 B

Raw Blame History