Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
soham bakore vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-27321
Doctor Appointment System version 1.0 suffers from multiple cross site scripting vulnerabilities. These are additional findings with original discovery of cross site scripting in this version being attributed to Soham Bakore in February of 2021.
NA
CVE-2021-27322
Doctor Appointment System version 1.0 suffers from multiple cross site scripting vulnerabilities. These are additional findings with original discovery of cross site scripting in this version being attributed to Soham Bakore in February of 2021.
9.8
CVSSv3
CVE-2022-36201
Doctor’s Appointment System v1.0 is vulnerable to Blind SQLi via settings.php.
Doctor\\'s Appointment System Project Doctor\\'s Appointment System 1.0
1 Github repository
6.1
CVSSv3
CVE-2022-36203
Doctor's Appointment System 1.0 is vulnerable to Cross Site Scripting (XSS) via the admin panel. In addition, it leads to takeover the administrator account by stealing the cookie via XSS.
Doctor\\'s Appointment System Project Doctor\\'s Appointment System 1.0
1 Github repository
9.8
CVSSv3
CVE-2021-27314
SQL injection in admin.php in doctor appointment system 1.0 allows an unauthenticated malicious user to insert malicious SQL queries via username parameter at login page.
Doctor Appointment System Project Doctor Appointment System 1.0
7.5
CVSSv3
CVE-2021-27316
Blind SQL injection in contactus.php in doctor appointment system 1.0 allows an unauthenticated malicious user to insert malicious SQL queries via lastname parameter.
Doctor Appointment System Project Doctor Appointment System 1.0
7.5
CVSSv3
CVE-2021-27315
Blind SQL injection in contactus.php in Doctor Appointment System 1.0 allows an unauthenticated malicious user to insert malicious SQL queries via the comment parameter.
Doctor Appointment System Project Doctor Appointment System 1.0
6.1
CVSSv3
CVE-2021-27318
Cross Site Scripting (XSS) vulnerability in contactus.php in Doctor Appointment System 1.0 allows remote malicious users to inject arbitrary web script or HTML via the lastname parameter.
Doctor Appointment System Project Doctor Appointment System 1.0
6.1
CVSSv3
CVE-2021-27317
Cross Site Scripting (XSS) vulnerability in contactus.php in Doctor Appointment System 1.0 allows remote malicious users to inject arbitrary web script or HTML via the comment parameter.
Doctor Appointment System Project Doctor Appointment System 1.0
6.1
CVSSv3
CVE-2020-22839
Reflected cross-site scripting vulnerability (XSS) in the evoadm.php file in b2evolution cms version 6.11.6-stable allows remote malicious users to inject arbitrary webscript or HTML code via the tab3 parameter.
B2evolution B2evolution Cms 6.11.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »