Lucene search
K

58 matches found

CVE
CVE
added 2024/11/08 6:31 a.m.50 views

CVE-2024-10995

The CVE-2024-10995 entry affects Codezips Hospital Appointment System 1.0. The vulnerability is in the file /removeDoctorResult.php, where the Name parameter can cause SQL injection. It may be exploited remotely with low attack complexity and no privileges, risking confidentiality, integrity, and...

9.8CVSS7.6AI score0.00663EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/08 6:31 a.m.14 views

CVE-2024-10995 Codezips Hospital Appointment System removeDoctorResult.php sql injection

A vulnerability was found in Codezips Hospital Appointment System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /removeDoctorResult.php. The manipulation of the argument Name leads to sql injection. The attack may be launched remotely. The exploi...

7.5CVSS7.5AI score0.00663EPSS
Exploits1References4
NVD
NVD
added 2024/11/08 5:15 a.m.12 views

CVE-2024-10991

A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploi...

9.8CVSS0.00663EPSS
Exploits1References4
CVE
CVE
added 2024/11/08 5:0 a.m.48 views

CVE-2024-10991

The CVE-2024-10991 entry affects Codezips Hospital Appointment System 1.0, with the vulnerability located in /editBranchResult.php where manipulation of the ID parameter leads to SQL injection. The attack is described as remotely initiable, with public disclosure of the exploit. Concrete technica...

9.8CVSS7.7AI score0.00663EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/11/08 5:0 a.m.16 views

CVE-2024-10991 Codezips Hospital Appointment System editBranchResult.php sql injection

A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploi...

7.5CVSS0.00663EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/11/08 5:0 a.m.12 views

CVE-2024-10991 Codezips Hospital Appointment System editBranchResult.php sql injection

A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploi...

7.5CVSS7.5AI score0.00663EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/11/08 12:0 a.m.3 views

Codezips Hospital Appointment System 注入漏洞

Codezips Hospital Appointment System is an open source hospital appointment system from Codezips. An injection vulnerability exists in Codezips Hospital Appointment System version 1.0, which stems from the parameter ID of the file /editBranchResult.php that can cause SQL injection...

9.8CVSS8AI score0.00663EPSS
Exploits1References4
OSV
OSV
added 2024/11/04 8:15 p.m.5 views

CVE-2024-10791

A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit...

9.8CVSS5.7AI score0.00587EPSS
Exploits1References4
NVD
NVD
added 2024/11/04 8:15 p.m.8 views

CVE-2024-10791

A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit...

9.8CVSS0.00587EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/11/04 7:31 p.m.8 views

CVE-2024-10791 Codezips Hospital Appointment System doctorAction.php sql injection

A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit...

7.5CVSS7.5AI score0.00587EPSS
Exploits1References4
CVE
CVE
added 2024/11/04 7:31 p.m.47 views

CVE-2024-10791

Codezips Hospital Appointment System 1.0 is affected by a SQL injection in the /doctorAction.php handler, triggered by manipulating the Name argument. Exploitation can be remote, and multiple sources label the issue as CRITICAL with publicly disclosed exploits. Connected reports consistently note...

9.8CVSS7.7AI score0.00587EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/11/04 7:31 p.m.16 views

CVE-2024-10791 Codezips Hospital Appointment System doctorAction.php sql injection

A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit...

7.5CVSS0.00587EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/11/04 12:0 a.m.4 views

PT-2024-16550 · Unknown · Codezips Hospital Appointment System

Name of the Vulnerable Software and Affected Versions: Codezips Hospital Appointment System version 1.0 Description: A critical issue has been found in the system, affecting some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The...

9.8CVSS7.6AI score0.00587EPSS
Exploits1References9
NVD
NVD
added 2024/10/28 3:15 p.m.30 views

CVE-2024-10449

A vulnerability, which was classified as critical, was found in Codezips Hospital Appointment System 1.0. This affects an unknown part of the file /loginAction.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

9.8CVSS0.01369EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/28 2:31 p.m.14 views

CVE-2024-10449 Codezips Hospital Appointment System loginAction.php sql injection

A vulnerability, which was classified as critical, was found in Codezips Hospital Appointment System 1.0. This affects an unknown part of the file /loginAction.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

7.5CVSS7.5AI score0.01369EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/10/28 2:31 p.m.21 views

CVE-2024-10449 Codezips Hospital Appointment System loginAction.php sql injection

A vulnerability, which was classified as critical, was found in Codezips Hospital Appointment System 1.0. This affects an unknown part of the file /loginAction.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

7.5CVSS0.01369EPSS
Exploits1References4
CVE
CVE
added 2024/10/28 2:31 p.m.52 views

CVE-2024-10449

CV_E-2024-10449 affects Codezips Hospital Appointment System 1.0. The vulnerability is in /loginAction.php where manipulating the Username parameter enables SQL injection. It can be exploited remotely and public disclosures exist; multiple sources rate it as critical/high impact with potential co...

9.8CVSS7.7AI score0.01369EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2024/10/28 12:0 a.m.2 views

Codezips Hospital Appointment System SQL注入漏洞

Codezips Hospital Appointment System is a Codezips open source hospital appointment system. Codezips Hospital Appointment System version 1.0 suffers from a SQL injection vulnerability that originates from the parameter Username in the file /loginAction.php that can lead to SQL injection...

9.8CVSS7.8AI score0.01369EPSS
Exploits1References4
Rows per page
Query Builder