Medicine Tracker System
CVE-2023-7134
CRITICAL
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionNVD
A vulnerability was found in SourceCodester Medicine Tracking System 1.0. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument page leads to path traversal: '../filedir'. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-249137 was assigned to this vulnerability.
AnalysisAI
A vulnerability was found in SourceCodester Medicine Tracking System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-24. A vulnerability was found in SourceCodester Medicine Tracking System 1.0. It has been rated as critical. The manipulation of the argument page leads to path traversal: '../filedir'. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-249137 was assigned to this vulnerability. Affected products include: Oretnom23 Medicine Tracker System.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Medicine Tracker System
View allA vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracking System 1.0.php? f=
A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracker System 1.0.php of t
A vulnerability was found in SourceCodester Medicine Tracker System 1.0. Rated medium severity (CVSS 6.9), this vulnerab
A vulnerability classified as critical has been found in SourceCodester Medicine Tracker System 1.0. Rated medium severi
A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0. Rated medium severity
A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker System 1.0. Rated critic
A vulnerability classified as critical was found in SourceCodester Medicine Tracker System 1.0. Rated medium severity (C
A username enumeration issue was discovered in Medicine Tracker System 1.0. Rated medium severity (CVSS 5.3), this vulne
Medicine Tracker System in PHP 1.0.0 is vulnerable to SQL Injection. Rated high severity (CVSS 7.5), this vulnerability
Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting (XSS). Rated medium severity (CVSS 6.1), this
Sourcecodester Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting (XSS) via page=about. Rated me
A vulnerability, which was classified as problematic, has been found in SourceCodester Medicine Tracker System 1.0. Rate
Same weakness CWE-24 – Path Traversal: '../filedir'
View allSame technique Path Traversal
View allShare
External POC / Exploit Code
Leaving vuln.today