PT-2024-16084 · Code Projects · Hospital Management System

Name of the Vulnerable Software and Affected Versions: code-projects Hospital Management System version 1.0 Description: A critical issue has been found in the Hospital Management System, affecting the processing of the file get doctor.php. The manipulation of the specilizationid argument leads t...

CVE-2024-10024 code-projects Pharmacy Management System manage_medicine_stock.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. This issue affects some unknown processing of the file /php/managemedicinestock.php. The manipulation of the argument name/packing/genericname/suppliersname leads to sql injection. T...

CVE-2024-10022 code-projects Pharmacy Management System manage_supplier.php sql injection

A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/managesupplier.php?action=search. The manipulation of the argument text leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-10022 code-projects Pharmacy Management System manage_supplier.php sql injection

A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/managesupplier.php?action=search. The manipulation of the argument text leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-10021 code-projects Pharmacy Management System manage_purchase.php sql injection

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /php/managepurchase.php?action=search&tag=VOUCHERNUMBER. The manipulation of the argument text leads to sql injection. The...

CVE-2024-9986 code-projects Blood Bank Management System member_register.php sql injection

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file memberregister.php. The manipulation of the argument fullname/username/password/email leads to sql injection. The attack may be...

CVE-2024-9976

A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/managecustomer.php?action=search. The manipulation of the argument text leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-9976

CVE-2024-9976 affects code-projects Pharmacy Management System 1.0. The vulnerability is a SQL injection in the file /php/manage_customer.php?action=search (and related /php/manage_customer.php endpoints) caused by unsanitized input in the text parameter, exploitable remotely and publicly disclos...

CVE-2024-9976 code-projects Pharmacy Management System manage_customer.php sql injection

A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/managecustomer.php?action=search. The manipulation of the argument text leads to sql injection. It is possible to initiate the attack remotely. The...

Code-Projects Blood Bank System SQL注入漏洞

Code-Projects Blood Bank System is a Code-Projects open source blood bank management system. A SQL injection vulnerability exists in Code-Projects Blood Bank System version 1.0, which originates from a SQL injection vulnerability in the useremail parameter of the reset.php file...

CVE-2024-9817 code-projects Blood Bank System update.php sql injection

A vulnerability was found in code-projects Blood Bank System 1.0. It has been classified as critical. This affects an unknown part of the file /update.php. The manipulation of the argument name leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...

CVE-2024-9812

A vulnerability classified as critical was found in code-projects Crud Operation System 1.0. This vulnerability affects unknown code of the file delete.php. The manipulation of the argument sid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2024-9812 code-projects Crud Operation System delete.php sql injection

A vulnerability classified as critical was found in code-projects Crud Operation System 1.0. This vulnerability affects unknown code of the file delete.php. The manipulation of the argument sid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2024-9812

Summary (CVE-2024-9812) A SQL injection flaw exists in code-projects Crud Operation System 1.0, affecting the delete.php file via manipulation of the “sid” parameter. The issue is exploitable remotely and can impact confidentiality, integrity, and availability as described in multiple sources. Th...

CVE-2024-9811 code-projects Restaurant Reservation System filter3.php sql injection

A vulnerability classified as critical has been found in code-projects Restaurant Reservation System 1.0. This affects an unknown part of the file filter3.php. The manipulation of the argument company leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2024-9811 code-projects Restaurant Reservation System filter3.php sql injection

A vulnerability classified as critical has been found in code-projects Restaurant Reservation System 1.0. This affects an unknown part of the file filter3.php. The manipulation of the argument company leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2024-9804 code-projects Blood Bank System campsdetails.php sql injection

A vulnerability was found in code-projects Blood Bank System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/campsdetails.php. The manipulation of the argument hospital leads to sql injection. The attack can be initiated remotely. The exploit has...

CVE-2024-9797

A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file register.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed...

CVE-2024-9803 code-projects Blood Bank Management System blooddetails.php cross site scripting

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as problematic. This affects an unknown part of the file blooddetails.php. The manipulation of the argument Availibility leads to cross site scripting. It is possible to initiate the attack remotel...

CVE-2024-9797 code-projects Blood Bank System register.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file register.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed...