{"uuid": "7c6d05f0-9fdb-420c-908f-e3e60a802b32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24610", "type": "seen", "source": "https://t.me/cibsecurity/57298", "content": "\u203c CVE-2023-24610 \u203c\n\nNOSH 4a5cfdb allows remote authenticated users to execute PHP arbitrary code via the \"practice logo\" upload feature. The client-side checks can be bypassed. This may allow attackers to steal Protected Health Information because the product is for health charting.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-01T16:14:25.000000Z"}