CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

NVD•added 2026/05/18 4:16 a.m.•12 views

CVE-2026-8785

A flaw has been found in projectworlds hospital-management-system-in-php 1.0. Affected by this vulnerability is the function getAllPatientDetail of the file updateinfo.php of the component GET Parameter Handler. Executing a manipulation of the argument appointmentno can lead to sql injection. The...

7.5CVSS0.00254EPSS

Exploits0References5

Cvelist•added 2026/05/18 2:45 a.m.•34 views

CVE-2026-8785 projectworlds hospital-management-system-in-php GET Parameter update_info.php getAllPatientDetail sql injection

7.5CVSS0.00254EPSS

Exploits0References5

CVE•added 2026/05/18 2:45 a.m.•12 views

CVE-2026-8785

Affected product: projectworlds hospital-management-system-in-php 1.0. The vulnerability is in the GET Parameter Handler, specifically the getAllPatientDetail function in update_info.php. The issue arises from manipulating the appointment_no argument, enabling SQL injection. It can be exploited r...

7.5CVSS6.8AI score0.00254EPSS

Exploits0References5

ATTACKERKB•added 2026/05/18 2:45 a.m.•9 views

CVE-2026-8785

7.5CVSS5.5AI score0.00254EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/05/18 2:45 a.m.•7 views

CVE-2026-8785 projectworlds hospital-management-system-in-php GET Parameter update_info.php getAllPatientDetail sql injection

7.5CVSS6.8AI score0.00254EPSS

Exploits0References5

CNNVD•added 2026/05/18 12:0 a.m.•7 views

Projectworlds Hospital Management System 注入漏洞

Projectworlds Hospital Management System is a hospital management system developed by the Austrian company Projectworlds. Version 1.0 of the Projectworlds Hospital Management System has a SQL injection vulnerability. This vulnerability arises from the function getAllPatientDetail in the GET...

7.5CVSS7.2AI score0.00254EPSS

Exploits0References1