CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/06/04 1:22 p.m.•8 views

CVE-2019-25728

Care2x 2.7 Hospital Information System is affected by SQL injection via the ck_config cookie parameter. The vulnerability allows unauthenticated attackers to inject arbitrary SQL through endpoints such as login.php, indexframe.php, and various module files, enabling extraction of sensitive databa...

Vulnrichment•added 2026/06/04 1:22 p.m.•9 views

CVE-2019-25728 Care2x 2.7 Hospital Information System SQL Injection via ck_config

EUVD•added 2026/06/04 1:22 p.m.•6 views

EUVD-2019-20164

Cvelist•added 2026/06/04 1:22 p.m.•33 views

CVE-2019-25728 Care2x 2.7 Hospital Information System SQL Injection via ck_config

8.8CVSS0.00123EPSS

ATTACKERKB•added 2026/06/04 1:22 p.m.•4 views

CVE-2019-25728

Exploits0References2Affected Software1

Positive Technologies•added 2026/06/04 12:0 a.m.•13 views

PT-2026-46198

Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL commands by manipulating the ck config cookie parameter. Attackers can inject malicious SQL through the ck config cookie in multiple endpoints including login.php,...

EUVD•added 2025/10/07 12:30 a.m.•3 views

Exploits0References3

EUVD-2007-1568

Malware in sbrugna...

5CVSS6.4AI score0.00346EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-22972

Malware in sbrugna...

5.4CVSS5.6AI score0.00175EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-22971

Malware in sbrugna...

9.8CVSS9.2AI score0.00477EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2007-5394

Malware in sbrugna...

7.5CVSS6.4AI score0.04686EPSS

Exploits1References14

RedhatCVE•added 2025/05/22 9:13 p.m.•6 views

CVE-2021-36351

SQL Injection Vulnerability in Care2x Open Source Hospital Information Management 2.7 Alpha via the 1 pday, 2 pmonth, and 3 pyear parameters in GET requests sent to /modules/nursing/nursing-station.php...

9.8CVSS8.2AI score0.00477EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 9:12 p.m.•12 views

CVE-2021-36352

Stored cross-site scripting XSS vulnerability in Care2x Hospital Information Management 2.7 Alpha. The vulnerability has found POST requests in /modules/registrationadmission/patientregister.php page with "namemiddle", "addrstr", "station", "namemaiden", "name2", "name3" parameters...

5.4CVSS5.7AI score0.00175EPSS

Exploits1References1

OSV•added 2021/08/26 2:15 p.m.•2 views

CVE-2021-36352

5.4CVSS6AI score0.00175EPSS

Exploits1References2

NVD•added 2021/08/26 2:15 p.m.•13 views

CVE-2021-36352

5.4CVSS0.00175EPSS

Exploits1References2

Prion•added 2021/08/26 2:15 p.m.•11 views

Cross site scripting

3.5CVSS5.3AI score0.00175EPSS

Exploits1References2Affected Software1

ATTACKERKB•added 2021/08/26 2:15 p.m.•1 views

CVE-2021-36352

5.4CVSS5AI score0.00175EPSS

Cvelist•added 2021/08/26 1:23 p.m.•14 views

CVE-2021-36352

5.5AI score0.00175EPSS

Exploits1References2

CVE•added 2021/08/26 1:23 p.m.•41 views

CVE-2021-36352

CVE-2021-36352 : Stored cross-site scripting (XSS) vulnerability in Care2x Hospital Information Management 2.7 Alpha. The issue arises from POST requests to /modules/registration_admission/patient_register.php that include parameters such as name_middle, addr_str, station, name_maiden, name_2, an...

5.4CVSS5.2AI score0.00175EPSS

Exploits1References2Affected Software1

CNNVD•added 2021/08/26 12:0 a.m.•0 views

Care2x Hospital Information Management 跨站脚本漏洞

Care2x Hospital Information Management is an open source information management system. A security vulnerability exists in Care2x Hospital Information Management version 2.7 Alpha, which stems from a POST request found in the /modules/registrationu admission/patientu register.php page that includ...

5.4CVSS5.7AI score0.00175EPSS