479 matches found
Cross site scripting
Cross Site Scripting XSS vulnerability in contactus.php in Doctor Appointment System 1.0 allows remote attackers to inject arbitrary web script or HTML via the comment parameter...
CVE-2021-27317
Cross Site Scripting XSS vulnerability in contactus.php in Doctor Appointment System 1.0 allows remote attackers to inject arbitrary web script or HTML via the comment parameter...
CVE-2021-27317
CVE-2021-27317 is a documented Cross Site Scripting (XSS) vulnerability in the Doctor Appointment System 1.0, specifically in the file contactus.php . The vulnerability allows remote attackers to inject arbitrary web script or HTML via the comment parameter. Public sources note that the issue ari...
CVE-2021-27318
Cross Site Scripting XSS vulnerability in contactus.php in Doctor Appointment System 1.0 allows remote attackers to inject arbitrary web script or HTML via the lastname parameter...
CVE-2021-27318
CVE-2021-27318 is an XSS in Doctor Appointment System 1.0, affecting contactus.php where the lastname parameter can inject arbitrary script/HTML. Documents confirm the vulnerability but do not provide remediation details or patch/version fixes.
Sourcecodesterk Doctor Appointment System 跨站脚本漏洞
Sourcecodester Doctor Appointment System is a Sourcecodesterk open source application. Provides an appointment function . Sourcecodester Doctor Appointment System version 1.0 suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client data in the WEB...
Doctor Appointment System version 跨站脚本漏洞
Sourcecodesterk Doctor Appointment System is a Sourcecodesterk open source application. Provides an appointment function . A cross-site scripting vulnerability exists in contactus.php in Sourcecodesterk Doctor Appointment System 1.0, which can be exploited by remote attackers to inject arbitrary...
CVE-2021-27124
SQL injection in the expertise parameter in searchresult.php in Doctor Appointment System v1.0 allows an authenticated patient user to dump the database credentials via a SQL injection attack...
CVE-2021-27124
SQL injection in the expertise parameter in searchresult.php in Doctor Appointment System v1.0 allows an authenticated patient user to dump the database credentials via a SQL injection attack...
Sql injection
SQL injection in the expertise parameter in searchresult.php in Doctor Appointment System v1.0 allows an authenticated patient user to dump the database credentials via a SQL injection attack...
CVE-2021-27124
Doctor Appointment System 1.0 is affected by an SQL injection in the expertise parameter of search_result.php. The vulnerability arises from insufficient input validation, allowing an authenticated patient user to execute arbitrary SQL and dump database credentials, implying potential data leakag...
Doctor Appointment System SQL注入漏洞
Sourcecodesterk Doctor Appointment System is an open source application from Sourcecodesterk. Provides an appointment function. Sourcecodesterk Doctor Appointment System version 1.0 contains a SQL injection vulnerability, which stems from the program does not adequately filter the searchresult.ph...
Online Doctor Appointment System 1.0 - 'Multiple' Stored XSS
Exploit Title: Online Doctor Appointment System 1.0 - 'Multiple' Stored XSS Tested on: Windows 10 Exploit Author: Mohamed habib Smidi Craniums Date: 2021-01-08 Vendor Homepage: https://www.sourcecodester.com/php/14663/online-doctor-appointment-system-php-full-source-code.html Software Link:...
Online Doctor Appointment System 1.0 Cross Site Scripting
Exploit Title: Online Doctor Appointment System 1.0 - Multiple Stored XSS Tested on: Windows 10 Exploit Author: Mohamed habib Smidi Craniums Date: 2021-01-08 Vendor Homepage: https://www.sourcecodester.com/php/14663/online-doctor-appointment-system-php-full-source-code.html Software Link:...
Online Doctor Appointment Booking System SQL注入漏洞
Online Doctor Appointment Booking System is a web-based online appointment booking system from PHP Scripts Mall Php Scripts Mall, India. Online Doctor Appointment Booking System suffers from a SQL injection vulnerability that originates from a SQL injection vulnerability in the getuser.php...
SQL Injection Vulnerability in Online Appointment Registration System of Shandong Bailing Health Consulting Co.
Shandong Bailing Health Consulting Co., Ltd. is a high-tech software enterprise with independent research and development capabilities in the main business areas of health consulting, and software research and development, design, development, sales, training and service integration of informatio...
Information Leakage Vulnerability in the Appointment Registration System of Nanjing Medical Healthcare Information Technology Co.
Ltd. is a high-tech growing enterprise in China Nanjing Software Valley. Nanjing Medical Healthcare Appointment and Registration System has the features of unified number pool for internal and external networks, multi-appointment channels, registration and appointment to the point of time,...
SQL Injection Vulnerability in Appointment Registration System of Nanjing Medical Health Information Technology Co.
Ltd. is a high-tech growing enterprise in China Nanjing Software Valley. A SQL injection vulnerability exists in the Appointment Registration System of Nanjing Medical Healthcare Information Technology Co...
NodAPS 'search' SQL Injection Vulnerability
NodAPS is an online appointment management system available in multiple languages and is used to help users schedule appointments more efficiently. A SQL injection vulnerability exists in NodAPS 'search'. An attacker can exploit the vulnerability to gain access to sensitive database information...