Lucene search
+L

479 matches found

CNNVD
CNNVD
added 2025/07/17 12:0 a.m.6 views

Code-Projects Online Appointment Booking System 注入漏洞

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter clinic in the file /admin/deletedoctorclinic.ph...

9.8CVSS8.2AI score0.00394EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/17 12:0 a.m.6 views

Code-Projects Online Appointment Booking System 注入漏洞

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter clinic in the file /admin/addmanagerclinic.php...

9.8CVSS8.2AI score0.00394EPSS
Exploits1References5
OSV
OSV
added 2025/07/13 8:15 p.m.5 views

CVE-2025-7540

A vulnerability, which was classified as critical, was found in code-projects Online Appointment Booking System 1.0. Affected is an unknown function of the file /getclinic.php. The manipulation of the argument townid leads to sql injection. It is possible to launch the attack remotely. The exploi...

9.8CVSS5.7AI score0.00399EPSS
Exploits1References5
OSV
OSV
added 2025/07/13 5:15 a.m.4 views

CVE-2025-7517

A vulnerability, which was classified as critical, has been found in code-projects Online Appointment Booking System 1.0. This issue affects some unknown processing of the file /getDay.php. The manipulation of the argument cidval leads to sql injection. The attack may be initiated remotely. The...

9.8CVSS5.8AI score0.00394EPSS
Exploits1References5
OSV
OSV
added 2025/07/13 4:15 a.m.6 views

CVE-2025-7515

A vulnerability classified as critical has been found in code-projects Online Appointment Booking System 1.0. This affects an unknown part of the file /ulocateus.php. The manipulation of the argument doctorname leads to sql injection. It is possible to initiate the attack remotely. The exploit ha...

9.8CVSS5.8AI score0.00394EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/13 12:0 a.m.4 views

Code-Projects Online Appointment Booking System 安全漏洞

Online Appointment Booking System is an online appointment booking system. The Online Appointment Booking System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter townid in the file /getclinic.php. The...

9.8CVSS7.9AI score0.00399EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/07/13 12:0 a.m.5 views

Code-Projects Online Appointment Booking System 注入漏洞

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that stems from an error in the parameter cidval in the file /getDay.php that lacks validation of externally entered SQL statements. The...

9.8CVSS8.2AI score0.00394EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/07/13 12:0 a.m.6 views

Code-Projects Online Appointment Booking System 注入漏洞

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that stems from an error in the parameter doctorname in the file /ulocateus.php that lacks validation of externally entered SQL statements. An...

9.8CVSS8.1AI score0.00394EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/23 10:21 a.m.10 views

CVE-2024-4294

A vulnerability, which was classified as critical, has been found in PHPGurukul Doctor Appointment Management System 1.0. Affected by this issue is some unknown functionality of the file /doctor/view-appointment-detail.php. The manipulation of the argument editid leads to improper control of...

8.8CVSS7.1AI score0.00855EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 4:19 a.m.7 views

CVE-2023-4219

A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument useremail leads to sql injection. The attack can be launched remotely. T...

7.5CVSS7.4AI score0.00669EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 2:57 a.m.5 views

CVE-2023-1062

A vulnerability, which was classified as critical, was found in SourceCodester Doctors Appointment System 1.0. Affected is an unknown function of the file /admin/add-new.php of the component Parameter Handler. The manipulation of the argument email leads to sql injection. It is possible to launch...

8.8CVSS7.8AI score0.007EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:53 a.m.5 views

CVE-2023-1063

A vulnerability has been found in SourceCodester Doctors Appointment System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/patient.php of the component Parameter Handler. The manipulation of the argument search leads to sql injection...

8.8CVSS7.4AI score0.00728EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:34 a.m.8 views

CVE-2023-1056

A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /edoc/doctor/patient.php. The manipulation of the argument search12 leads to sql injection. The attack can be launch...

8.8CVSS7.4AI score0.007EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:33 a.m.11 views

CVE-2023-1058

A vulnerability classified as critical has been found in SourceCodester Doctors Appointment System 1.0. This affects an unknown part of the file create-account.php. The manipulation of the argument newemail leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

8.8CVSS7.5AI score0.0076EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:32 a.m.6 views

CVE-2023-1057

A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been rated as critical. Affected by this issue is the function edoc of the file login.php. The manipulation of the argument usermail leads to sql injection. VDB-221822 is the identifier assigned to this vulnerabili...

8.8CVSS8.1AI score0.00728EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:11 a.m.11 views

CVE-2022-36547

Edoc-doctor-appointment-system v1.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability at /patient/index.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search field...

6.1CVSS6.1AI score0.0054EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:21 p.m.5 views

CVE-2022-45728

Doctor Appointment Management System v1.0.0 was discovered to contain a cross-site scripting XSS vulnerability...

6.1CVSS6.3AI score0.0053EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:17 p.m.7 views

CVE-2022-36546

Edoc-doctor-appointment-system v1.0.1 was discovered to contain a Cross-Site Request Forgery CSRF via /patient/settings.php...

8.8CVSS7.6AI score0.00427EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:17 p.m.10 views

CVE-2022-36545

Edoc-doctor-appointment-system v1.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /patient/settings.php...

9.8CVSS8.3AI score0.00988EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:13 p.m.4 views

CVE-2022-46128

phpgurukul Doctor Appointment Management System V 1.0.0 is vulnerable to Cross Site Scripting XSS via searchdata=...

6.1CVSS6.3AI score0.00478EPSS
Exploits0References1
Rows per page
Query Builder