CVE-2024-55104

Name of the Vulnerable Software and Affected Versions Online Nurse Hiring System version 1.0

Description The issue is related to multiple SQL injection vulnerabilities found in the /admin/add-nurse.php component of the system. These vulnerabilities can be exploited via the gender and emailid parameters.

Recommendations For Online Nurse Hiring System version 1.0, consider disabling access to the /admin/add-nurse.php component until a patch is available. As a temporary workaround, restrict the use of the gender and emailid parameters in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.