Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hospital management system project hospital management system - vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2023-43909
Hospital Management System thru commit 4770d exists to contain a SQL injection vulnerability via the app_contact parameter in appsearch.php.
Hospital Management System Project Hospital Management System -
9.8
CVSSv3
CVE-2022-48120
SQL Injection vulnerability in kishan0725 Hospital Management System thru commit 4770d740f2512693ef8fd9aa10a8d17f79fad9bd (on March 13, 2021), allows malicious users to execute arbitrary commands via the contact and doctor parameters to /search.php.
Hospital Management System Project Hospital Management System
9.8
CVSSv3
CVE-2021-38754
SQL Injection vulnerability in Hospital Management System due to lack of input validation in messearch.php.
Hospital Management System Project Hospital Management System -
5.3
CVSSv3
CVE-2021-38755
Unauthenticated doctor entry deletion in Hospital Management System in admin-panel1.php.
Hospital Management System Project Hospital Management System -
6.1
CVSSv3
CVE-2021-38756
Persistent cross-site scripting (XSS) in Hospital Management System targeted towards web admin through prescribe.php.
Hospital Management System Project Hospital Management System -
6.1
CVSSv3
CVE-2021-38757
Persistent cross-site scripting (XSS) in Hospital Management System targeted towards web admin through contact.php.
Hospital Management System Project Hospital Management System -
9.1
CVSSv3
CVE-2022-25402
An incorrect access control issue in HMS v1.0 allows unauthenticated malicious users to read and modify all PHP files.
Hospital Management System Project Hospital Management System 1.0
9.8
CVSSv3
CVE-2022-25403
HMS v1.0 exists to contain a SQL injection vulnerability via the component admin.php.
Hospital Management System Project Hospital Management System 1.0
5.4
CVSSv3
CVE-2022-25407
Hospital Management System v1.0 exists to contain a stored cross-site scripting (XSS) vulnerability via the Doctor parameter at /admin-panel1.php.
Hospital Management System Project Hospital Management System 1.0
5.4
CVSSv3
CVE-2022-25408
Hospital Management System v1.0 exists to contain a stored cross-site scripting (XSS) vulnerability via the dpassword parameter at /admin-panel1.php.
Hospital Management System Project Hospital Management System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »