Stan

Name of the Vulnerable Software and Affected Versions: Carinal Tien Hospital Health Report System (affected versions not specified) Description: The system's login page has improper authentication, allowing a remote attacker to acquire another user's privilege by modifying the `cookie` parameter without authentication. This enables the attacker to perform limited operations on the system, modify data, and make the service partially unavailable to the user. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.