CRITICAL🇵🇱 Wersja polska

CVE-2020-26629

CVSS 9.8v3.1pub. 2024-01-10upd. 2025-05-09

A JQuery Unrestricted Arbitrary File Upload vulnerability was discovered in Hospital Management System V4.0 which allows an unauthenticated attacker to upload any file to the server.

🤖 AI Analysis
How it works

The vulnerability results from the lack of proper validation of uploaded file types in a component based on the jQuery library. An unauthenticated attacker can upload any file — including executable files (e.g., webshell) — directly to the server without requiring any permissions. After uploading the malicious file, the attacker can gain the ability to execute commands remotely on the server by accessing the uploaded file through a web browser.

Impact

An attacker can upload a webshell or other malicious payload, gaining remote code execution (RCE) on the server, which can result in complete system compromise, theft of patient data, and further lateral movement in the network.

Mitigation & patch

Apply patches available from the vendor according to the references. Additionally, it is recommended to implement strict validation of file types and extensions on the server side, require authentication before any file upload, and configure the web server so that upload directories do not have script execution permissions.

Who is affected

Phpgurukul Hospital Management System V4.0

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Phpgurukul Hospital Management System

    APP
    Phpgurukul
    4.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2025-56214CRITICAL9.8PL ✓ten sam produkt

SQL Injection w phpgurukul Hospital Management System 4.0 (parametr username)

CVE-2025-56212CRITICAL9.8PL ✓ten sam produkt

SQL Injection w phpgurukul Hospital Management System 4.0 (add-doctor.php)

CVE-2024-51360CRITICAL9.8PL ✓ten sam produkt

RCE w Phpgurukul Hospital Management System v4.0 przez edit-profile.php

CVE-2023-31498CRITICAL9.8ten sam produkt

A privilege escalation issue was found in PHP Gurukul Hospital Management System In v.4.0 allows a remote atta...

CVE-2022-24263CRITICAL9.8ten sam produkt

Hospital Management System v4.0 was discovered to contain a SQL injection vulnerability in /Hospital-Managemen...