58 matches found
CVE-2024-10995
The CVE-2024-10995 entry affects Codezips Hospital Appointment System 1.0. The vulnerability is in the file /removeDoctorResult.php, where the Name parameter can cause SQL injection. It may be exploited remotely with low attack complexity and no privileges, risking confidentiality, integrity, and...
CVE-2024-10995 Codezips Hospital Appointment System removeDoctorResult.php sql injection
A vulnerability was found in Codezips Hospital Appointment System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /removeDoctorResult.php. The manipulation of the argument Name leads to sql injection. The attack may be launched remotely. The exploi...
CVE-2024-10991
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploi...
CVE-2024-10991
The CVE-2024-10991 entry affects Codezips Hospital Appointment System 1.0, with the vulnerability located in /editBranchResult.php where manipulation of the ID parameter leads to SQL injection. The attack is described as remotely initiable, with public disclosure of the exploit. Concrete technica...
CVE-2024-10991 Codezips Hospital Appointment System editBranchResult.php sql injection
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploi...
CVE-2024-10991 Codezips Hospital Appointment System editBranchResult.php sql injection
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploi...
Codezips Hospital Appointment System 注入漏洞
Codezips Hospital Appointment System is an open source hospital appointment system from Codezips. An injection vulnerability exists in Codezips Hospital Appointment System version 1.0, which stems from the parameter ID of the file /editBranchResult.php that can cause SQL injection...
CVE-2024-10791
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2024-10791
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2024-10791 Codezips Hospital Appointment System doctorAction.php sql injection
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2024-10791
Codezips Hospital Appointment System 1.0 is affected by a SQL injection in the /doctorAction.php handler, triggered by manipulating the Name argument. Exploitation can be remote, and multiple sources label the issue as CRITICAL with publicly disclosed exploits. Connected reports consistently note...
CVE-2024-10791 Codezips Hospital Appointment System doctorAction.php sql injection
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit...
PT-2024-16550 · Unknown · Codezips Hospital Appointment System
Name of the Vulnerable Software and Affected Versions: Codezips Hospital Appointment System version 1.0 Description: A critical issue has been found in the system, affecting some unknown processing of the file /doctorAction.php. The manipulation of the argument Name leads to sql injection. The...
CVE-2024-10449
A vulnerability, which was classified as critical, was found in Codezips Hospital Appointment System 1.0. This affects an unknown part of the file /loginAction.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...
CVE-2024-10449 Codezips Hospital Appointment System loginAction.php sql injection
A vulnerability, which was classified as critical, was found in Codezips Hospital Appointment System 1.0. This affects an unknown part of the file /loginAction.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...
CVE-2024-10449 Codezips Hospital Appointment System loginAction.php sql injection
A vulnerability, which was classified as critical, was found in Codezips Hospital Appointment System 1.0. This affects an unknown part of the file /loginAction.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...
CVE-2024-10449
CV_E-2024-10449 affects Codezips Hospital Appointment System 1.0. The vulnerability is in /loginAction.php where manipulating the Username parameter enables SQL injection. It can be exploited remotely and public disclosures exist; multiple sources rate it as critical/high impact with potential co...
Codezips Hospital Appointment System SQL注入漏洞
Codezips Hospital Appointment System is a Codezips open source hospital appointment system. Codezips Hospital Appointment System version 1.0 suffers from a SQL injection vulnerability that originates from the parameter Username in the file /loginAction.php that can lead to SQL injection...