14 matches found
CVE-2022-23366
HMS v1.0 was discovered to contain a SQL injection vulnerability via patientlogin.php...
CVE-2022-25490
HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in department.php...
CVE-2022-23364
HMS v1.0 was discovered to contain a SQL injection vulnerability via adminlogin.php...
CVE-2022-25403
HMS v1.0 was discovered to contain a SQL injection vulnerability via the component admin.php...
CVE-2022-25492
HMS v1.0 was discovered to contain a SQL injection vulnerability via the medicineid parameter in ajaxmedicine.php...
CVE-2022-25492
HMS v1.0 was discovered to contain a SQL injection vulnerability via the medicineid parameter in ajaxmedicine.php...
CVE-2022-25493
HMS v1.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via treatmentrecord.php...
CVE-2022-25491
HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in appointment.php...
CVE-2022-25402
An incorrect access control issue in HMS v1.0 allows unauthenticated attackers to read and modify all PHP files...
CVE-2022-25403
HMS v1.0 was discovered to contain a SQL injection vulnerability via the component admin.php...
CVE-2022-23364
HMS v1.0 was discovered to contain a SQL injection vulnerability via adminlogin.php...
CVE-2022-23365
HMS v1.0 was discovered to contain a SQL injection vulnerability via doctorlogin.php...
CVE-2022-23366
HMS v1.0 was discovered to contain a SQL injection vulnerability via patientlogin.php...
CVE-2022-23364
HMS v1.0 was discovered to contain a SQL injection vulnerability via adminlogin.php...