28 matches found
CVE-2022-30011
In HMS 1.0 when requesting appointment.php through POST, multiple parameters can lead to a SQL injection vulnerability...
CVE-2022-30011
CVE-2022-30011 affects HMS 1.0, where a SQL injection is possible when requesting appointment.php via POST with multiple parameters. The root cause is not fully detailed across sources, but multiple parameters in the POST request are identified as enabling the vulnerability. Impact is described i...
PT-2022-19967 ยท Hms ยท Hms
Name of the Vulnerable Software and Affected Versions: HMS version 1.0 Description: The issue is related to a SQL injection vulnerability. When requesting "appointment.php" through POST, multiple parameters can lead to this vulnerability. Recommendations: For HMS version 1.0, as a temporary...
CVE-2022-25491
HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in appointment.php...
Sql injection
HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in appointment.php...
CVE-2022-25491
CVE-2022-25491 affects HMS v1.0. A SQL injection vulnerability exists in the editid parameter of appointment.php. Root cause: unsafely handled input enabling arbitrary SQL execution. Exploitation details are not provided in the connected documents. CVSSโ3.1 base score 7.5 (HIGH) with Network atta...
CVE-2022-25491
HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in appointment.php...
kinghavencounseling.com XSS vulnerability
Open Bug Bounty ID: OBB-560209 Description| Value ---|--- Affected Website:| kinghavencounseling.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...