672 matches found
CVE-2022-33880
hms-staff.php in Projectworlds Hospital Management System Mini-Project through 2018-06-17 allows SQL injection via the type parameter...
CVE-2022-33880
Projectworlds Hospital Management System Mini-Project contains an SQL injection in hms-staff.php via the type parameter, affecting versions prior to 2018-06-17. The root cause is unsafely constructed SQL in that file, enabling data disclosure or unauthorized access as described in related advisor...
PT-2022-21882 · Projectworlds · Projectworlds Hospital Management System
Name of the Vulnerable Software and Affected Versions: Projectworlds Hospital Management System Mini-Project versions prior to 2018-06-17 Description: The issue allows SQL injection via the type parameter in the hms-staff.php file. This could potentially lead to unauthorized access to sensitive...
Projectworlds Hospital Management System SQL注入漏洞
Projectworlds Hospital Management System is a hospital management system from Projectworlds Austria.Projectworlds Hospital Management System Mini-Project 2018.06.17 and earlier versions contain a SQL injection vulnerability, which can be exploited by attackers to obtain database data...
Projectworlds Online Hotel Booking System SQL Injection Vulnerability (CNVD-2022-58410)
Projectworlds Online Hotel Booking System is a hotel online booking system from Projectworlds. A SQL injection vulnerability exists in Projectworlds Online Hotel Booking System version 1.0. The vulnerability stems from a lack of validation of the roomname parameter against an externally entered S...
Projectworlds Online Hotel Booking System SQL Injection Vulnerability
Projectworlds Online Hotel Booking System is a hotel online booking system from Projectworlds. A SQL injection vulnerability exists in Online Hotel Booking System version 1.0. An attacker can exploit this vulnerability to perform a sql injection attack...
Projectworlds Online Hotel Booking System SQL注入漏洞
Projectworlds Online Hotel Booking System is a hotel online booking system from Projectworlds. A SQL injection vulnerability exists in Projectworlds Online Hotel Booking System version 1.0. The vulnerability stems from a lack of validation of the roomname parameter against an externally entered S...
Projectworlds Online Hotel Booking System SQL注入漏洞
Projectworlds Online Hotel Booking System is a hotel online booking system from Projectworlds. A SQL injection vulnerability exists in Online Hotel Booking System version 1.0. An attacker can exploit this vulnerability to perform a sql injection attack...
CVE-2021-44095
A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote attacker to compromise Application SQL database...
CVE-2021-44095
A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote attacker to compromise Application SQL database...
CVE-2021-44095
A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote attacker to compromise Application SQL database...
Sql injection
A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote attacker to compromise Application SQL database...
CVE-2021-44095
Affected software: ProjectWorlds Hospital Management System (PHP 1.0) — vulnerable on the login page. Issue: SQL injection leading to potential compromise of the application’s SQL database. Root cause: unsafely constructed SQL queries on login input (per CVE description). Impact (per sources): re...
CVE-2021-44095
A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote attacker to compromise Application SQL database...
Projectworlds Hospital Management System Privilege Error Vulnerability
Projectworlds Hospital Management System is a hospital management system from Projectworlds Austria. Projectworlds Hospital Management System version 1.0 is vulnerable to a privilege error that could be exploited by an unauthorized attacker to add unlimited patients via addppatient.php...
Design/Logic Flaw
An issue was discovered in Projectworlds Hospital Management System v1.0. Unauthorized malicious attackers can add patients without restriction via addpatient.php...
CVE-2021-45852
Projectworlds Hospital Management System v1.0 contains a privilege error allowing an unauthorized attacker to add patients without restriction via add_patient.php (and related add_ppatient.php in some references). The core issue is improper authorization for patient creation, enabling unlimited e...
Projectworlds Hospital Management System 安全漏洞
Projectworlds Hospital Management System is a hospital management system from Projectworlds Austria. Projectworlds Hospital Management System version 1.0 is vulnerable to a privilege error that could be exploited by an unauthorized attacker to add unlimited patients via addppatient.php...
CVE-2021-46024
Projectworlds online-shopping-webvsite-in-php 1.0 suffers from a SQL Injection vulnerability via the "id" parameter in cartadd.php, No login is required...
CVE-2021-46024
Projectworlds online-shopping-webvsite-in-php 1.0 suffers from a SQL Injection vulnerability via the "id" parameter in cartadd.php, No login is required...