Lucene search
K

479 matches found

Prion
Prion
added 2021/03/01 9:15 p.m.13 views

Cross site scripting

Cross Site Scripting XSS vulnerability in contactus.php in Doctor Appointment System 1.0 allows remote attackers to inject arbitrary web script or HTML via the comment parameter...

4.3CVSS6AI score0.01313EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2021/03/01 8:16 p.m.27 views

CVE-2021-27317

Cross Site Scripting XSS vulnerability in contactus.php in Doctor Appointment System 1.0 allows remote attackers to inject arbitrary web script or HTML via the comment parameter...

6.1AI score0.01313EPSS
Exploits3References2
CVE
CVE
added 2021/03/01 8:16 p.m.58 views

CVE-2021-27317

CVE-2021-27317 is a documented Cross Site Scripting (XSS) vulnerability in the Doctor Appointment System 1.0, specifically in the file contactus.php . The vulnerability allows remote attackers to inject arbitrary web script or HTML via the comment parameter. Public sources note that the issue ari...

6.1CVSS5.9AI score0.01313EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2021/03/01 8:14 p.m.22 views

CVE-2021-27318

Cross Site Scripting XSS vulnerability in contactus.php in Doctor Appointment System 1.0 allows remote attackers to inject arbitrary web script or HTML via the lastname parameter...

6.1AI score0.01487EPSS
Exploits3References2
CVE
CVE
added 2021/03/01 8:14 p.m.58 views

CVE-2021-27318

CVE-2021-27318 is an XSS in Doctor Appointment System 1.0, affecting contactus.php where the lastname parameter can inject arbitrary script/HTML. Documents confirm the vulnerability but do not provide remediation details or patch/version fixes.

6.1CVSS5.9AI score0.01487EPSS
Exploits3References2Affected Software1
CNNVD
CNNVD
added 2021/02/26 12:0 a.m.7 views

Sourcecodesterk Doctor Appointment System 跨站脚本漏洞

Sourcecodester Doctor Appointment System is a Sourcecodesterk open source application. Provides an appointment function . Sourcecodester Doctor Appointment System version 1.0 suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client data in the WEB...

6.1CVSS6.3AI score0.01487EPSS
Exploits3References4
CNNVD
CNNVD
added 2021/02/26 12:0 a.m.7 views

Doctor Appointment System version 跨站脚本漏洞

Sourcecodesterk Doctor Appointment System is a Sourcecodesterk open source application. Provides an appointment function . A cross-site scripting vulnerability exists in contactus.php in Sourcecodesterk Doctor Appointment System 1.0, which can be exploited by remote attackers to inject arbitrary...

6.1CVSS6.4AI score0.01313EPSS
Exploits3References4
NVD
NVD
added 2021/02/18 4:15 a.m.29 views

CVE-2021-27124

SQL injection in the expertise parameter in searchresult.php in Doctor Appointment System v1.0 allows an authenticated patient user to dump the database credentials via a SQL injection attack...

6.5CVSS0.05721EPSS
Exploits1References3
OSV
OSV
added 2021/02/18 4:15 a.m.4 views

CVE-2021-27124

SQL injection in the expertise parameter in searchresult.php in Doctor Appointment System v1.0 allows an authenticated patient user to dump the database credentials via a SQL injection attack...

6.5CVSS6.7AI score
Exploits0References3
Prion
Prion
added 2021/02/18 4:15 a.m.22 views

Sql injection

SQL injection in the expertise parameter in searchresult.php in Doctor Appointment System v1.0 allows an authenticated patient user to dump the database credentials via a SQL injection attack...

4CVSS6.6AI score0.05721EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2021/02/18 3:6 a.m.104 views

CVE-2021-27124

Doctor Appointment System 1.0 is affected by an SQL injection in the expertise parameter of search_result.php. The vulnerability arises from insufficient input validation, allowing an authenticated patient user to execute arbitrary SQL and dump database credentials, implying potential data leakag...

6.5CVSS6.6AI score0.05721EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2021/02/09 12:0 a.m.6 views

Doctor Appointment System SQL注入漏洞

Sourcecodesterk Doctor Appointment System is an open source application from Sourcecodesterk. Provides an appointment function. Sourcecodesterk Doctor Appointment System version 1.0 contains a SQL injection vulnerability, which stems from the program does not adequately filter the searchresult.ph...

6.5CVSS6.7AI score0.05721EPSS
Exploits1References5
Exploit DB
Exploit DB
added 2021/01/08 12:0 a.m.243 views

Online Doctor Appointment System 1.0 - 'Multiple' Stored XSS

Exploit Title: Online Doctor Appointment System 1.0 - 'Multiple' Stored XSS Tested on: Windows 10 Exploit Author: Mohamed habib Smidi Craniums Date: 2021-01-08 Vendor Homepage: https://www.sourcecodester.com/php/14663/online-doctor-appointment-system-php-full-source-code.html Software Link:...

5.4CVSS5.6AI score0.02535EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/01/08 12:0 a.m.173 views

Online Doctor Appointment System 1.0 Cross Site Scripting

Exploit Title: Online Doctor Appointment System 1.0 - Multiple Stored XSS Tested on: Windows 10 Exploit Author: Mohamed habib Smidi Craniums Date: 2021-01-08 Vendor Homepage: https://www.sourcecodester.com/php/14663/online-doctor-appointment-system-php-full-source-code.html Software Link:...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2020/12/02 12:0 a.m.8 views

Online Doctor Appointment Booking System SQL注入漏洞

Online Doctor Appointment Booking System is a web-based online appointment booking system from PHP Scripts Mall Php Scripts Mall, India. Online Doctor Appointment Booking System suffers from a SQL injection vulnerability that originates from a SQL injection vulnerability in the getuser.php...

9.8CVSS7.4AI score0.01318EPSS
Exploits1References3
CNVD
CNVD
added 2020/08/03 12:0 a.m.1 views

SQL Injection Vulnerability in Online Appointment Registration System of Shandong Bailing Health Consulting Co.

Shandong Bailing Health Consulting Co., Ltd. is a high-tech software enterprise with independent research and development capabilities in the main business areas of health consulting, and software research and development, design, development, sales, training and service integration of informatio...

7.6AI score
Exploits0
CNVD
CNVD
added 2020/05/22 12:0 a.m.1 views

Information Leakage Vulnerability in the Appointment Registration System of Nanjing Medical Healthcare Information Technology Co.

Ltd. is a high-tech growing enterprise in China Nanjing Software Valley. Nanjing Medical Healthcare Appointment and Registration System has the features of unified number pool for internal and external networks, multi-appointment channels, registration and appointment to the point of time,...

6.5AI score
Exploits0
CNVD
CNVD
added 2019/07/04 12:0 a.m.2 views

SQL Injection Vulnerability in Appointment Registration System of Nanjing Medical Health Information Technology Co.

Ltd. is a high-tech growing enterprise in China Nanjing Software Valley. A SQL injection vulnerability exists in the Appointment Registration System of Nanjing Medical Healthcare Information Technology Co...

8AI score
Exploits0
CNVD
CNVD
added 2018/06/19 12:0 a.m.2 views

NodAPS 'search' SQL Injection Vulnerability

NodAPS is an online appointment management system available in multiple languages and is used to help users schedule appointments more efficiently. A SQL injection vulnerability exists in NodAPS 'search'. An attacker can exploit the vulnerability to gain access to sensitive database information...

8.2AI score
Exploits0References1
Rows per page
Query Builder