Login Sign Up

CVE-2024-9034

7.3 HIGH
SQL Injection Authentication Bypass

📋 TL;DR

This critical SQL injection vulnerability in Patient Record Management System 1.0 allows attackers to execute arbitrary SQL commands via the username parameter in login.php. Attackers can potentially access, modify, or delete sensitive patient records. All systems running the affected software are vulnerable if exposed to untrusted networks.

💻 Affected Systems

Products:
  • Patient Record Management System
Versions: 1.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of version 1.0 are vulnerable. The vulnerability exists in the default login.php file.

📦 What is this software?

Patient Record Management System by Code Projects

View all CVEs affecting Patient Record Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to patient data theft, record manipulation, authentication bypass, and potential remote code execution on the database server.

🟠

Likely Case

Unauthorized access to patient records, extraction of sensitive personal/medical data, and potential privilege escalation within the application.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only error messages or partial data exposure.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly available on GitHub. SQL injection via username parameter requires no authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

1. Check vendor website for updates. 2. If no patch available, implement workarounds. 3. Consider replacing with alternative software.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add parameterized queries and input validation to login.php

Edit login.php to use prepared statements with parameterized queries instead of direct string concatenation

Web Application Firewall

all

Deploy WAF with SQL injection rules

Configure WAF to block SQL injection patterns in login requests

🧯 If You Can't Patch

  • Isolate the system behind a firewall with strict network access controls
  • Implement database-level protections: minimal privileges, query logging, and regular backups

🔍 How to Verify

Check if Vulnerable:

Test login.php with SQL injection payloads in username field (e.g., ' OR '1'='1)

Check Version:

Check software version in admin panel or configuration files

Verify Fix Applied:

Verify that SQL injection attempts no longer succeed and return appropriate error messages

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL errors in application logs
  • Multiple failed login attempts with SQL patterns
  • Successful logins from unexpected IPs

Network Indicators:

  • HTTP POST requests to login.php containing SQL keywords
  • Unusual database query patterns from web server

SIEM Query:

source="web_logs" AND uri="/login.php" AND (request CONTAINS "OR" OR request CONTAINS "UNION" OR request CONTAINS "SELECT")

📊 Metadata

CVE ID: CVE-2024-9034
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-89
Published: September 20, 2024
Last Updated: September 26, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-9034, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)