Lucene search
+L

37 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/28 12:45 p.m.10 views

CVE-2026-13497

A vulnerability was determined in itsourcecode Hospital Management System 1.0. The impacted element is an unknown function of the file /appointment.php. This manipulation of the argument editid causes sql injection. The attack can be initiated remotely. The exploit has been publicly disclosed and...

6.5CVSS6.5AI score0.00204EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/28 12:0 a.m.15 views

PT-2026-53108

Name of the Vulnerable Software and Affected Versions itsourcecode Hospital Management System version 1.0 Description A SQL injection issue exists in the /appointment.php file. This occurs when the editid parameter is manipulated, allowing a remote attacker to execute unauthorized database querie...

6.5CVSS6.7AI score0.00204EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/08 9:32 p.m.14 views

EUVD-2025-33280

A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. The affected element is an unknown function of the file /admin/search-appointment.php. The manipulation of the argument searchdata results in sql injection. It is possible to launch the attack remotely. The...

7.5CVSS6.5AI score0.00384EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-35226

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.18452EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-30160

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01475EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.6 views

PHPGurukul Beauty Parlour Management System SQL注入漏洞

Beauty Parlour Management System is an application system. Beauty Parlour Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter delid in the file /admin/all-appointment.php. An attacker can...

9.8CVSS8.2AI score0.00387EPSS
Exploits1References5
CVE
CVE
added 2025/06/30 12:2 a.m.25 views

CVE-2025-6878

SourceCodester Best Salon Management System v1.0 contains a SQL injection vulnerability in /panel/search-appointment.php via the searchdata parameter. The exposure is remote, with exploitation disclosed publicly. Multiple sources confirm the condition and indicate the vulnerability is primarily c...

8.8CVSS7.8AI score0.00358EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/06/06 2:31 a.m.19 views

CVE-2025-5712 SourceCodester Open Source Clinic Management System appointment.php sql injection

A vulnerability has been found in SourceCodester Open Source Clinic Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /appointment.php. The manipulation of the argument patient leads to sql injection. The attack can be launche...

7.5CVSS0.00364EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/06/06 2:31 a.m.8 views

CVE-2025-5712 SourceCodester Open Source Clinic Management System appointment.php sql injection

A vulnerability has been found in SourceCodester Open Source Clinic Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /appointment.php. The manipulation of the argument patient leads to sql injection. The attack can be launche...

7.5CVSS7.7AI score0.00364EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 1:18 a.m.9 views

CVE-2022-30012

In the POST request of the appointment.php page of HMS v.0, there are SQL injection vulnerabilities in multiple parameters, and database information can be obtained through injection...

7.5CVSS7.9AI score0.01712EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:33 a.m.6 views

CVE-2022-4013

A vulnerability classified as problematic was found in Hospital Management Center. Affected by this vulnerability is an unknown functionality of the file appointment.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to t...

8.8CVSS6.8AI score0.00246EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:48 p.m.10 views

CVE-2022-30011

In HMS 1.0 when requesting appointment.php through POST, multiple parameters can lead to a SQL injection vulnerability...

9.8CVSS7.8AI score0.18452EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/04/05 11:0 a.m.19 views

CVE-2025-3299 PHPGurukul Men Salon Management System appointment.php sql injection

A vulnerability was found in PHPGurukul Men Salon Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /appointment.php. The manipulation of the argument Name leads to sql injection. The attack may be launched remotely. The exploit has...

7.5CVSS0.00428EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/04/05 11:0 a.m.8 views

CVE-2025-3299 PHPGurukul Men Salon Management System appointment.php sql injection

A vulnerability was found in PHPGurukul Men Salon Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /appointment.php. The manipulation of the argument Name leads to sql injection. The attack may be launched remotely. The exploit has...

7.5CVSS7.3AI score0.00428EPSS
Exploits1References5
CVE
CVE
added 2024/11/25 1:31 a.m.59 views

CVE-2024-11649

Summary of CVE-2024-11649 : Affects 1000 Projects Beauty Parlour Management System 1.0. The vulnerability is in the admin script /admin/search-appointment.php where manipulation of the searchdata argument causes an SQL injection. The issue can be triggered remotely and the exploit has been disclo...

9.8CVSS7.7AI score0.00827EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2023/08/20 11:15 p.m.28 views

CVE-2023-4440

A vulnerability was found in SourceCodester Free Hospital Management System for Small Practices 1.0. It has been classified as critical. This affects an unknown part of the file appointment.php. The manipulation of the argument sheduledate leads to sql injection. It is possible to initiate the...

9.8CVSS7.4AI score0.00596EPSS
Exploits0References3
Prion
Prion
added 2023/08/20 11:15 p.m.27 views

Sql injection

A vulnerability was found in SourceCodester Free Hospital Management System for Small Practices 1.0. It has been classified as critical. This affects an unknown part of the file appointment.php. The manipulation of the argument sheduledate leads to sql injection. It is possible to initiate the...

6.5CVSS9.7AI score0.00596EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/07/25 8:31 a.m.38 views

CVE-2023-3890 Campcodes Beauty Salon Management System edit-accepted-appointment.php cross site scripting

A vulnerability classified as problematic has been found in Campcodes Beauty Salon Management System 1.0. This affects an unknown part of the file /admin/edit-accepted-appointment.php. The manipulation of the argument id leads to cross site scripting. It is possible to initiate the attack remotel...

4CVSS6.2AI score0.00505EPSS
Exploits1References3
Prion
Prion
added 2023/07/25 2:15 a.m.14 views

Sql injection

A vulnerability was found in Campcodes Beauty Salon Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/search-appointment.php. The manipulation of the argument searchdata leads to sql injection. The attack may be launched...

6.5CVSS7.8AI score0.00521EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2022/11/16 8:15 a.m.21 views

CVE-2022-4013

A vulnerability classified as problematic was found in Hospital Management Center. Affected by this vulnerability is an unknown functionality of the file appointment.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to t...

8.8CVSS0.00246EPSS
Exploits1References2
Rows per page
Query Builder