TROYANOSYVIRUS
Volver a CVEs

CVE-2025-30044

N/A

Descripcion

In the endpoints "/cgi-bin/CliniNET.prd/utils/usrlogstat_simple.pl", "/cgi-bin/CliniNET.prd/utils/usrlogstat.pl", "/cgi-bin/CliniNET.prd/utils/userlogstat2.pl", and "/cgi-bin/CliniNET.prd/utils/dblogstat.pl", the parameters are not sufficiently normalized, which enables code injection.

Detalles CVE

Puntuacion CVSS v3.1N/A
Publicado3/2/2026
Ultima modificacion3/2/2026
Fuentenvd
Avistamientos honeypot0

Debilidades (CWE)

CWE-78

Referencias

https://cert.pl/en/posts/2026/03/CVE-2025-10350/(cvd@cert.pl)
https://www.cgm.com/pol_pl/products/szpital/cgm-clininet.html(cvd@cert.pl)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.