Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
doctor appointment system project doctor appointment system 1.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-36201
Doctor’s Appointment System v1.0 is vulnerable to Blind SQLi via settings.php.
Doctor\\'s Appointment System Project Doctor\\'s Appointment System 1.0
1 Github repository
9.8
CVSSv3
CVE-2022-36202
Doctor's Appointment System1.0 is vulnerable to Incorrect Access Control via edoc/patient/settings.php. The settings.php is affected by Broken Access Control (IDOR) via id= parameter.
Doctor\\'s Appointment System Project Doctor\\'s Appointment System 1.0
1 Github repository
6.1
CVSSv3
CVE-2022-36203
Doctor's Appointment System 1.0 is vulnerable to Cross Site Scripting (XSS) via the admin panel. In addition, it leads to takeover the administrator account by stealing the cookie via XSS.
Doctor\\'s Appointment System Project Doctor\\'s Appointment System 1.0
1 Github repository
9.8
CVSSv3
CVE-2022-28568
Sourcecodester Doctor's Appointment System 1.0 is vulnerable to File Upload to RCE via Image upload from the administrator panel. An attacker can obtain remote command execution just by knowing the path where the images are stored.
Simple Doctor\\'s Appointment System Project Simple Doctor\\'s Appointment System 1.0
5.4
CVSSv3
CVE-2021-25791
Multiple stored cross site scripting (XSS) vulnerabilities in the "Update Profile" module of Online Doctor Appointment System 1.0 allows authenticated malicious users to execute arbitrary web scripts or HTML via crafted payloads in the First Name, Last Name, and Address...
Online Doctor Appointment System Php Full Source Code Project Online Doctor Appointment System Php Full Source Code 1.0
1 Github repository
9.8
CVSSv3
CVE-2020-29168
SQL Injection vulnerability in Projectworlds Online Doctor Appointment Booking System, allows malicious users to gain sensitive information via the q parameter to the getuser.php endpoint.
Online Doctor Appointment Booking System Php And Mysql Project Online Doctor Appointment Booking System Php And Mysql 1.0
9.8
CVSSv3
CVE-2020-29283
An SQL injection vulnerability exists in Online Doctor Appointment Booking System PHP and Mysql via the q parameter to getuser.php.
Online Doctor Appointment Booking System Php And Mysql Project Online Doctor Appointment Booking System Php And Mysql 1.0
8.8
CVSSv3
CVE-2023-1056
A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /edoc/doctor/patient.php. The manipulation of the argument search12 leads to sql injection. The att...
Doctors Appointment System Project Doctors Appointment System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2