177 matches found
CVE-2022-43058
The CVE-2022-43058 entry relates to Online Diagnostic Lab Management System v1.0, which contains a SQL injection vulnerability via the id parameter at /odlms//classes/Master.php?f=delete_activity. Exploitation details are not provided in the documents, and no patch/version remediation is stated. ...
CVE-2022-43051
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Users.php?f=deletetest...
CVE-2022-43052
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Users.php?f=delete...
Sql injection
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Users.php?f=deletetest...
Sql injection
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Users.php?f=delete...
Online Diagnostic Lab Management System SQL注入漏洞
Online Diagnostic Lab Management System is an online diagnostic lab management system. A security vulnerability exists in Online Diagnostic Lab Management System v1.0, which stems from the id parameter of its /odlms/classes/Users.php?f=deletetest component that allows an attacker to implement SQL...
CVE-2022-43052
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Users.php?f=delete...
CVE-2022-43051
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Users.php?f=deletetest...
PT-2022-26731 · Unknown · Online Diagnostic Lab Management System
Name of the Vulnerable Software and Affected Versions: Online Diagnostic Lab Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/odlms/classes/Users.php?f=delete test" API endpoint...
Online Diagnostic Lab Management System SQL注入漏洞
Online Diagnostic Lab Management System is an online diagnostic lab management system. A security vulnerability exists in Online Diagnostic Lab Management System v1.0, which stems from the id parameter of its /odlms/classes/Users.php?f=delete component that allows an attacker to implement SQL...
CVE-2022-43052
CVE-2022-43052 affects Online Diagnostic Lab Management System v1.0. The vulnerability is a SQL injection via the id parameter in the endpoint /odlms/classes/Users.php?f=delete (root cause: improper input handling in a user-delete operation). The CVE has a high impact profile (CVSS v3.1: 7.2, HIG...
CVE-2022-43051
Online Diagnostic Lab Management System v1.0 is affected by a SQL injection vulnerability in the id parameter of /odlms/classes/Users.php?f=delete_test. The vulnerability details indicate an injection flaw in the Users deletion endpoint, enabling potentially unauthenticated or limited-auth exploi...
Online Diagnostic Lab Management System SQL Injection Vulnerability
Online Diagnostic Lab Management System is an online diagnostic lab management system that provides a variety of diagnostic tasks online. online Diagnostic Lab Management System is vulnerable to SQL injection in version v1.0. The vulnerability stems from the affected version not properly filterin...
CVE-2022-43062
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deleteappointment...
CVE-2022-43063
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Users.php?f=deleteclient...
Sql injection
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Users.php?f=deleteclient...
Sql injection
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deleteappointment...
PT-2022-5385 · Unknown · Online Diagnostic Lab Management System
Name of the Vulnerable Software and Affected Versions: Online Diagnostic Lab Management System version 1.0 Description: The issue is related to a lack of protection against SQL query structure exploitation. This can be exploited by a remote attacker to execute arbitrary SQL queries using the id...
CVE-2022-43063
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Users.php?f=deleteclient...
CVE-2022-43062
CVE-2022-43062 affects the Online Diagnostic Lab Management System v1.0. A SQL injection flaw exists via the id parameter in the endpoint /classes/Master.php?f=delete_appointment, as reported across multiple sources. The CVSS v3.1 score is 7.2 (HIGH) with network attack vector, low attack complex...