Lucene search
+L

24 matches found

RedhatCVE
RedhatCVE
added 2026/02/19 1:28 a.m.9 views

CVE-2025-70062

PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery CSRF vulnerability in the 'Add Doctor' module. The application fails to enforce CSRF token validation on the add-doctor.php endpoint. This allows remote attackers to create arbitrary Doctor accounts privileged users ...

6.5CVSS5.9AI score0.00173EPSS
Exploits1References1
OSV
OSV
added 2026/02/18 7:21 p.m.4 views

CVE-2025-70062

PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery CSRF vulnerability in the 'Add Doctor' module. The application fails to enforce CSRF token validation on the add-doctor.php endpoint. This allows remote attackers to create arbitrary Doctor accounts privileged users ...

6.5CVSS6AI score0.00173EPSS
Exploits1References2
NVD
NVD
added 2026/02/18 7:21 p.m.10 views

CVE-2025-70062

PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery CSRF vulnerability in the 'Add Doctor' module. The application fails to enforce CSRF token validation on the add-doctor.php endpoint. This allows remote attackers to create arbitrary Doctor accounts privileged users ...

6.5CVSS0.00173EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/18 12:0 a.m.4 views

CVE-2025-70062

PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery CSRF vulnerability in the 'Add Doctor' module. The application fails to enforce CSRF token validation on the add-doctor.php endpoint. This allows remote attackers to create arbitrary Doctor accounts privileged users ...

5.9AI score0.00173EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/02/18 12:0 a.m.25 views

CVE-2025-70062

PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery CSRF vulnerability in the 'Add Doctor' module. The application fails to enforce CSRF token validation on the add-doctor.php endpoint. This allows remote attackers to create arbitrary Doctor accounts privileged users ...

0.00173EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/02/18 12:0 a.m.12 views

PHPGurukul Hospital Management System 安全漏洞

PHPGurukul Hospital Management System is a hospital management system developed by PHPGurukul company, based on PHP and MySQL. The PHPGurukul Hospital Management System v4.0 version has a security vulnerability. This vulnerability stems from the lack of cross-site request forgery token verificati...

6.5CVSS5.9AI score0.00173EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.10 views

PT-2026-20481

PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery CSRF vulnerability in the 'Add Doctor' module. The application fails to enforce CSRF token validation on the add-doctor.php endpoint. This allows remote attackers to create arbitrary Doctor accounts privileged users ...

5.9AI score0.00173EPSS
Exploits1References3
CVE
CVE
added 2026/02/18 12:0 a.m.21 views

CVE-2025-70062

CVE-2025-70062 affects PHPGurukul Hospital Management System v4.0. A CSRF vulnerability exists in the Add Doctor module where the add-doctor.php endpoint does not enforce CSRF token validation. This allows an attacker to cause an authenticated administrator to visit a crafted page, potentially cr...

6.5CVSS5.9AI score0.00173EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28420

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00415EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/08/30 6:21 p.m.3 views

CVE-2025-56212

phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in add-doctor.php via the docname parameter...

9.8CVSS8.1AI score0.00407EPSS
Exploits0References1
CNVD
CNVD
added 2025/08/28 12:0 a.m.0 views

Hospital Management System add-doctor.php File SQL Injection Vulnerability

Hospital Management System is a PHP and MySQL based hospital management system. Hospital Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the docname parameter of add-doctor.php. No details of the...

9.8CVSS8.1AI score0.00407EPSS
Exploits0References1
OSV
OSV
added 2025/08/25 3:15 p.m.4 views

CVE-2025-56212

phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in add-doctor.php via the docname parameter...

9.8CVSS5.8AI score0.00407EPSS
Exploits0References1
NVD
NVD
added 2025/08/25 3:15 p.m.5 views

CVE-2025-56212

phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in add-doctor.php via the docname parameter...

9.8CVSS0.00407EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/25 12:0 a.m.3 views

PHPGurukul Hospital Management System 安全漏洞

Hospital Management System is a PHP and MySQL based hospital management system. Hospital Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the docname parameter of add-doctor.php. No details of the...

9.8CVSS8AI score0.00407EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.4 views

PT-2025-34667 · Unknown · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: phpgurukul Hospital Management System version 4.0 Description: The phpgurukul Hospital Management System is susceptible to SQL Injection in the add-doctor.php file through the docname parameter. Recommendations: As a temporary workaround,...

9.8CVSS7.6AI score0.00407EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/25 12:0 a.m.1 views

CVE-2025-56212

phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in add-doctor.php via the docname parameter...

8.3AI score0.00407EPSS
Exploits0References2
CNVD
CNVD
added 2025/07/23 12:0 a.m.4 views

Online Appointment Booking System adddoctorclinic.php File SQL Injection Vulnerability

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System has a SQL injection vulnerability that originates from improper handling of the parameter clinic in the file /admin/adddoctorclinic.php, which can be exploited by an attacker to access...

9.8CVSS8AI score0.00394EPSS
Exploits1References1
OSV
OSV
added 2025/05/27 3:15 a.m.6 views

CVE-2025-5224

A vulnerability classified as critical has been found in Campcodes Online Hospital Management System 1.0. Affected is an unknown function of the file /admin/add-doctor.php. The manipulation of the argument Doctorspecialization leads to sql injection. It is possible to launch the attack remotely...

9.8CVSS5.8AI score0.00415EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/05/27 12:0 a.m.6 views

CampCodes Online Hospital Management System 注入漏洞

CampCodes Online Hospital Management System is an online hospital management system from CampCodes, Inc. An injection vulnerability exists in CampCodes Online Hospital Management System version 1.0, which originates from a SQL injection due to an incorrect operation of the Doctorspecialization...

9.8CVSS7.8AI score0.00415EPSS
Exploits1References5
CNVD
CNVD
added 2024/10/28 12:0 a.m.3 views

Hospital Management System add-doctor.php File SQL Injection Vulnerability

Hospital Management System a hospital management system. Hospital Management System has a SQL injection vulnerability that originates from the parameter docname in the file /admin/add-doctor.php that can lead to SQL injection. No details of the vulnerability are available at this time...

9.8CVSS8.1AI score0.00545EPSS
Exploits1References1
Rows per page
Query Builder