18 matches found
EUVD-2025-16519
Malicious code in bioql PyPI...
CVE-2025-5359
A vulnerability classified as critical has been found in Campcodes Online Hospital Management System 1.0. This affects an unknown part of the file /appointment-history.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has...
CVE-2025-5359 Campcodes Online Hospital Management System appointment-history.php sql injection
A vulnerability classified as critical has been found in Campcodes Online Hospital Management System 1.0. This affects an unknown part of the file /appointment-history.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has...
CVE-2025-5359
CVE-2025-5359 affects Campcodes Online Hospital Management System version 1.0. The vulnerability is in the file /appointment-history.php, where manipulation of the ID parameter leads to a SQL injection. The issue is exploitable remotely and has been publicly disclosed. Multiple connected sources ...
CampCodes Online Hospital Management System 注入漏洞
CampCodes Online Hospital Management System is an online hospital management system from CampCodes, Inc. An injection vulnerability exists in version 1.0 of the CampCodes Online Hospital Management System, which originates from a SQL injection due to an incorrect manipulation of the parameter ID ...
The vulnerability of the \hms\admin\appointment-history.php component, a web application for managing hospitals within the PHPGurukul Hospital Management System, allows an attacker to intercept cookie files.
The vulnerability of the \hms\admin\appointment-history.php web application, a hospital management system for PHPGurukul, is related to the lack of security measures taken to protect the website structure. Exploiting this vulnerability could allow an attacker to intercept cookie files...
CVE-2020-22169
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\appointment-history.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22167
PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data...
CVE-2020-22167
PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data...
PHPGurukul Hospital Management System SQL注入漏洞
PHPGurukul Hospital Management System is a web application for hospitals to manage doctors and patients. A SQL injection vulnerability exists in \hms\appointment-history.php in PHPGurukul Hospital Management System version 4.0. An attacker can exploit this vulnerability to obtain sensitive...
PHPGurukul Hospital Management System跨站脚本漏洞
PHPGurukul Hospital Management System is a web application for hospitals to manage doctors and patients. A persistent cross-site scripting vulnerability exists in \hms\admin\appointment-history.php in PHPGurukul Hospital Management System version 4.0. A remote attacker can exploit this...
PT-2021-3396 · Unknown · Phpgurukul Hospital Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 4.0 Description: The issue is related to a lack of protection for the web page structure in the appointment-history.php component of the PHPGurukul Hospital Management System. This can be exploite...
CVE-2020-35745
PHPGURUKUL Hospital Management System V 4.0 does not properly restrict access to admin/dashboard.php, which allows attackers to access all data of users, doctors, patients, change admin password, get appointment history and access all session logs...
CVE-2020-35745
PHPGURUKUL Hospital Management System V 4.0 does not properly restrict access to admin/dashboard.php, which allows attackers to access all data of users, doctors, patients, change admin password, get appointment history and access all session logs...
Code injection
PHPGURUKUL Hospital Management System V 4.0 does not properly restrict access to admin/dashboard.php, which allows attackers to access all data of users, doctors, patients, change admin password, get appointment history and access all session logs...
CVE-2020-35745
PHPGURUKUL Hospital Management System V 4.0 does not properly restrict access to admin/dashboard.php, which allows attackers to access all data of users, doctors, patients, change admin password, get appointment history and access all session logs...
Design/Logic Flaw
PHPGurukul hospital-management-system-in-php 4.0 allows XSS via admin/patient-search.php, doctor/search.php, book-appointment.php, doctor/appointment-history.php, or admin/appointment-history.php...
PT-2020-16054 · Phpgurukul · Phpgurukul Hospital-Management-System-In-Php
Name of the Vulnerable Software and Affected Versions: PHPGurukul hospital-management-system-in-php version 4.0 Description: The issue allows for XSS attacks via several endpoints, including "admin/patient-search.php", "doctor/search.php", "book-appointment.php", "doctor/appointment-history.php",...