Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remoteclinic remote clinic 2.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-33478
RemoteClinic 2.0 has a SQL injection vulnerability in the ID parameter of /medicines/stocks.php.
Remoteclinic Remote Clinic 2.0
9.8
CVSSv3
CVE-2023-33479
RemoteClinic version 2.0 contains a SQL injection vulnerability in the /staff/edit.php file.
Remoteclinic Remote Clinic 2.0
9.8
CVSSv3
CVE-2023-33481
RemoteClinic 2.0 is vulnerable to a time-based blind SQL injection attack in the 'start' GET parameter of patients/index.php.
Remoteclinic Remote Clinic 2.0
8.8
CVSSv3
CVE-2023-33480
RemoteClinic 2.0 contains a critical vulnerability chain that can be exploited by a remote attacker with low-privileged user credentials to create admin users, escalate privileges, and execute arbitrary code on the target system via a PHP shell. The vulnerabilities are caused by ...
Remoteclinic Remote Clinic 2.0
9.8
CVSSv3
CVE-2022-48152
SQL Injection vulnerability in RemoteClinic 2.0 allows malicious users to execute arbitrary commands and gain sensitive information via the id parameter to /medicines/profile.php.
Remoteclinic Remote Clinic 2.0
6.1
CVSSv3
CVE-2021-39416
Multiple Cross Site Scripting (XSS) vulnerabilities exists in Remote Clinic v2.0 in (1) patients/register-patient.php via the (a) Contact, (b) Email, (c) Weight, (d) Profession, (e) ref_contact, (f) address, (g) gender, (h) age, and (i) serial parameters; in (2) patients/edit-pat...
Remoteclinic Remote Clinic 2.0
5.4
CVSSv3
CVE-2021-31329
Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Chat" and "Personal Address" field on staff/register.php
Remoteclinic Remote Clinic 2.0
5.4
CVSSv3
CVE-2021-31327
Stored XSS in Remote Clinic v2.0 in /medicines due to Medicine Name Field.
Remoteclinic Remote Clinic 2.0
5.4
CVSSv3
CVE-2021-30039
Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Fever" or "Blood Pressure" field on the patients/register-report.php.
Remoteclinic Remote Clinic 2.0
5.4
CVSSv3
CVE-2021-30030
Cross Site Scripting (XSS) in Remote Clinic v2.0 via the Full Name field on register-patient.php.
Remoteclinic Remote Clinic 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »