Sinturno SQL Injection Vulnerability
Vulnerability
A SQL injection vulnerability has been identified in Sinturno, an online appointment management system. This vulnerability allows attackers to retrieve, create, update, and delete databases by exploiting the 'client' parameter in the '/_adm/scripts/modalReport_data.php' endpoint.
Impact
Exploitation of this vulnerability allows for full database manipulation, including retrieval, creation, updating, and deletion of database records.
Added: Mar 23, 2026, 2:27 PM
Updated: Mar 23, 2026, 2:27 PM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
3.1exploitability
7.4remediation
0.0relevance
4.6threat
0.0urgency
2.9incentive
4.2Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.