11 matches found
CVE-2024-37803
Multiple stored cross-site scripting XSS vulnerabilities in CodeProjects Health Care hospital Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fname and lname parameters under the Staff Info page...
CVE-2024-37802
CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Patient Info module via the searvalu parameter...
CVE-2024-37802
CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Patient Info module via the searvalu parameter...
CVE-2024-37803
Multiple stored cross-site scripting XSS vulnerabilities in CodeProjects Health Care hospital Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fname and lname parameters under the Staff Info page...
CVE-2024-38348
CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Staff Info module via the searvalu parameter...
CVE-2024-37802
CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Patient Info module via the searvalu parameter...
CVE-2024-38348
CodeProjects Health Care hospital Management System v1.0 contains a SQL injection vulnerability in the Staff Info module reachable via the searvalu parameter. The issue is documented across multiple sources (NVD, CVE list, CNNVD, PT-Security, etc.) with the vulnerability impacting the Staff Info ...
CVE-2024-38348
CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Staff Info module via the searvalu parameter...
CVE-2024-38347
CodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Room Information module via the id parameter...
CVE-2024-37802
CodeProjects Health Care hospital Management System v1.0 has a SQL injection flaw in the Patient Info module that is exploitable via the searvalu parameter. The vulnerability affects the Patient Info input handling and can lead to high-impact outcomes in confidentiality, integrity, and availabili...
PT-2024-27760 · Unknown · Codeprojects Health Care Hospital Management System
Name of the Vulnerable Software and Affected Versions: CodeProjects Health Care hospital Management System version 1.0 Description: The issue is related to a SQL injection vulnerability in the Patient Info module. This vulnerability is exploited via the searvalu parameter. Recommendations: For...