Lucene search
K

32 matches found

OSV
OSV
added 2026/01/15 4:16 p.m.3 views

CVE-2021-47758

Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability that allows attackers to upload malicious PHP plugins through the module upload functionality. Authenticated attackers can generate and upload a ZIP plugin with a PHP backdoor that enables...

8.8CVSS6.4AI score0.00838EPSS
Exploits1References4
NVD
NVD
added 2026/01/15 4:16 p.m.8 views

CVE-2021-47757

Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability in the backup restoration functionality. Authenticated attackers can upload a modified backup zip file with a malicious PHP shell to execute arbitrary system commands on the server...

8.8CVSS0.0076EPSS
Exploits1References4
CVE
CVE
added 2026/01/15 3:52 p.m.17 views

CVE-2021-47758

Chikitsa Patient Management System 2.0.2 is affected by an authenticated remote code execution (RCE) vulnerability exposed via the module upload function. An authenticated attacker can upload a ZIP plugin containing a PHP backdoor, enabling arbitrary command execution on the server through a weap...

8.8CVSS8AI score0.00838EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/15 3:52 p.m.4 views

CVE-2021-47758 Chikitsa Patient Management System 2.0.2 - Remote Code Execution (RCE) (Authenticated)

Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability that allows attackers to upload malicious PHP plugins through the module upload functionality. Authenticated attackers can generate and upload a ZIP plugin with a PHP backdoor that enables...

8.8CVSS8AI score0.00838EPSS
Exploits1References4
EUVD
EUVD
added 2026/01/15 3:52 p.m.5 views

EUVD-2026-2778

Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability in the backup restoration functionality. Authenticated attackers can upload a modified backup zip file with a malicious PHP shell to execute arbitrary system commands on the server...

8.8CVSS8.2AI score0.0076EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2026/01/15 3:52 p.m.4 views

CVE-2021-47757

Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability in the backup restoration functionality. Authenticated attackers can upload a modified backup zip file with a malicious PHP shell to execute arbitrary system commands on the server...

8.8CVSS6.8AI score0.0076EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/15 3:52 p.m.3 views

CVE-2021-47757 Chikitsa Patient Management System 2.0.2 - 'plugin' Remote Code Execution (RCE) (Authenticated)

Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability in the backup restoration functionality. Authenticated attackers can upload a modified backup zip file with a malicious PHP shell to execute arbitrary system commands on the server...

8.8CVSS8.3AI score0.0076EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-24623

Malware in sbrugna...

5.4CVSS5.3AI score0.00664EPSS
Exploits3References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-24624

Malware in sbrugna...

5.4CVSS5.3AI score0.01008EPSS
Exploits4References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-24621

Malware in sbrugna...

5.4CVSS5.3AI score0.00664EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2025/05/22 6:41 p.m.12 views

CVE-2021-38152

index.php/appointment/insertpatientaddappointment in Chikitsa Patient Management System 2.0.0 allows XSS...

5.4CVSS6.9AI score0.01008EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:41 p.m.7 views

CVE-2021-38149

index.php/admin/adduser in Chikitsa Patient Management System 2.0.0 allows XSS...

5.4CVSS6.9AI score0.00664EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:40 p.m.10 views

CVE-2021-38151

index.php/appointment/todos in Chikitsa Patient Management System 2.0.0 allows XSS...

5.4CVSS7AI score0.00618EPSS
Exploits1References1
0day.today
0day.today
added 2021/12/09 12:0 a.m.287 views

Chikitsa Patient Management System 2.0.2 - (backup) Remote Code Execution Exploit

Exploit Title: Chikitsa Patient Management System 2.0.2 - 'plugin' Remote Code Execution RCE Authenticated Exploit Author: 0z09e https://twitter.com/0z09e Vendor Homepage: https://sourceforge.net/u/dharashah/profile/ Software Link:...

0.2AI score
Exploits0
0day.today
0day.today
added 2021/12/09 12:0 a.m.422 views

Chikitsa Patient Management System 2.0.2 - (plugin) Remote Code Execution Exploit

Exploit Title: Chikitsa Patient Management System 2.0.2 - Remote Code Execution RCE Authenticated Exploit Author: 0z09e https://twitter.com/0z09e Vendor Homepage: https://sourceforge.net/u/dharashah/profile/ Software Link:...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/09 12:0 a.m.345 views

Chikitsa Patient Management System 2.0.2 Backup Remote Code Execution

Exploit Title: Chikitsa Patient Management System 2.0.2 - 'plugin' Remote Code Execution RCE Authenticated Date: 03/12/2021 Exploit Author: 0z09e https://twitter.com/0z09e Vendor Homepage: https://sourceforge.net/u/dharashah/profile/ Software Link:...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2021/12/09 12:0 a.m.307 views

Chikitsa Patient Management System 2.0.2 - 'plugin' Remote Code Execution (RCE) (Authenticated)

Exploit Title: Chikitsa Patient Management System 2.0.2 - Remote Code Execution RCE Authenticated Date: 03/12/2021 Exploit Author: 0z09e https://twitter.com/0z09e Vendor Homepage: https://sourceforge.net/u/dharashah/profile/ Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/12/09 12:0 a.m.330 views

Chikitsa Patient Management System 2.0.2 - 'backup' Remote Code Execution (RCE) (Authenticated)

Exploit Title: Chikitsa Patient Management System 2.0.2 - 'plugin' Remote Code Execution RCE Authenticated Date: 03/12/2021 Exploit Author: 0z09e https://twitter.com/0z09e Vendor Homepage: https://sourceforge.net/u/dharashah/profile/ Software Link:...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/09/17 12:0 a.m.7 views

The vulnerability of the index.php/appointment/todos component of the Chikitsa Patient Management System allows an attacker to compromise the confidentiality and integrity of the protected information.

The vulnerability of the index.php/appointment/todos component of the Chikitsa Patient Management System exists due to the lack of protective measures for the website structure. Exploiting this vulnerability allows an attacker to compromise the confidentiality and integrity of the protected...

5.4CVSS5.9AI score0.00618EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/08/09 1:17 p.m.41 views

CVE-2021-38152

CVE-mitre:index.php/appointment/insertpatientaddappointment in Chikitsa Patient Management System 2.0.0 allows XSS. nu11secur1ty: XSS-Stored - Brutal PWNED on Chikitsa 2.0.0 parameter "name" + User: Unrestricted File Upload ".php"...

5.4CVSS6.1AI score0.01008EPSS
Exploits4References3
Rows per page
Query Builder