102 matches found
WordPress KiviCare <2.3.9 - SQL Injection
WordPress KiviCare plugin before 2.3.9 contains a SQL injection vulnerability. The plugin does not sanitize and escape some parameters before using them in SQL statements via the ajaxpost AJAX action with the getdoctordetails route. An attacker can possibly obtain sensitive information, modify...
CVE-2026-42735
Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare kivicare-clinic-management-system allows Password Recovery Exploitation.This issue affects KiviCare: from n/a through = 4.3.0...
CVE-2026-25383
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Iqonic Design KiviCare kivicare-clinic-management-system allows Reflected XSS.This issue affects KiviCare: from n/a through = 3.6.16...
CVE-2026-25034
Missing Authorization vulnerability in Iqonic Design KiviCare kivicare-clinic-management-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects KiviCare: from n/a through = 3.6.16...
PT-2026-27933
Name of the Vulnerable Software and Affected Versions Iqonic Design KiviCare versions through 3.6.16 Description The software contains a flaw due to improper input neutralization during web page generation, leading to a Reflected Cross-Site Scripting XSS condition. This allows an attacker to inje...
Exploit for Unrestricted Upload of File with Dangerous Type in Oretnom23 Clinic\'S_Patient_Management_System
CVE-2022-40471 – CPMS Authenticated File Upload RCE 📌 Over...
PT-2025-47762
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Iqonic Design KiviCare kivicare-clinic-management-system allows SQL Injection.This issue affects KiviCare: from n/a through = 3.6.13...
EUVD-2024-44402
Malicious code in bioql PyPI...
EUVD-2025-29820
Malicious code in bioql PyPI...
EUVD-2023-58661
Malicious code in bioql PyPI...
EUVD-2025-17062
Malicious code in bioql PyPI...
EUVD-2025-17047
Malicious code in bioql PyPI...
EUVD-2024-38437
Malicious code in bioql PyPI...
EUVD-2025-29825
Malicious code in bioql PyPI...
CVE-2025-11038
A weakness has been identified in itsourcecode Online Clinic Management System 1.0. Affected is an unknown function of the file /details.php?action=post. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been made available t...
PT-2025-39679
Name of the Vulnerable Software and Affected Versions itsourcecode Online Clinic Management System version 1.0 Description A flaw exists in itsourcecode Online Clinic Management System version 1.0. The issue involves the potential for SQL injection through manipulation of the ID argument in a...
itsourcecode Online Clinic Management System SQL注入漏洞
itsourcecode Online Clinic Management System is an online clinic management system of itsourcecode open source. A SQL injection vulnerability exists in version 1.0 of itsourcecode Online Clinic Management System, which stems from an incorrect manipulation of the parameter ID in the file...
itsourcecode Online Clinic Management System SQL注入漏洞
itsourcecode Online Clinic Management System is a itsourcecode open source online clinic management system. SQL injection vulnerability exists in itsourcecode Online Clinic Management System version 1.0, which originates from incorrect manipulation of the parameters...
CVE-2025-5758
A vulnerability classified as critical has been found in SourceCodester Open Source Clinic Management System 1.0. This affects an unknown part of the file /doctor.php. The manipulation of the argument doctorname leads to sql injection. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-5755
A vulnerability was found in SourceCodester Open Source Clinic Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /emailconfig.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The...