A vulnerability was found in BlueNet Technology Clinical Browsing System 1.2.1. It has been classified as critical. This affects an unknown part of the file /xds/deleteStudy.php. The manipulation of the argument documentUniqueId leads to sql injection. It is possible to initiate the attack remotely.
View the template here CVE-2024-4257.yaml
References:
https://github.com/GAO-UNO/cve/blob/main/sql.md