CVE-2026-40552— Remote Code Execution in mpGabinet

Remote Code Execution in mpGabinet

mpGabinet is vulnerable to Remote Command Execution. An authorized user with access to the application and direct access to the backend database can achieve system command execution by uploading an attachment and modifying its storage path in the database to reference an attacker-controlled remote network resource. Alternatively, it is possible to use a previously uploaded file and change its reference. When the application processes the attachment, and a user tries to open it, the referenced resource is executed by the system. Critically, this vulnerability can be exploited by any unauthenticated attacker by chaining it with CVE-2026-40550 and CVE-2026-40551, which allows obtaining database access, and logging onto any account. This issue affects mpGabinet version 23.12.19 and below.

N/A

在范围间的资源转移不正确

BinSoft mpGabinet 安全漏洞

BinSoft mpGabinet是波兰BinSoft公司的一个医疗诊所管理系统。 BinSoft mpGabinet 23.12.19及之前版本存在安全漏洞，该漏洞源于远程命令执行问题，可能导致授权用户通过上传附件并修改数据库中存储路径为攻击者控制的远程网络资源，或更改已有文件引用，当用户尝试打开附件时系统执行引用资源，未授权攻击者可通过与CVE-2026-40550和CVE-2026-40551链式利用获取数据库访问权限并登录任意账户。

N/A

N/A