Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

58 matches found

NVD
NVDadded 2026/06/04 2:16 p.m.9 views

CVE-2019-25728

Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL commands by manipulating the ckconfig cookie parameter. Attackers can inject malicious SQL through the ckconfig cookie in multiple endpoints including login.php, indexframe.php...

8.8CVSS0.00262EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/06/04 1:22 p.m.5 views

CVE-2019-25728

Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL commands by manipulating the ckconfig cookie parameter. Attackers can inject malicious SQL through the ckconfig cookie in multiple endpoints including login.php, indexframe.php...

8.8CVSS6.1AI score0.00262EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/06/04 1:22 p.m.34 views

CVE-2019-25728 Care2x 2.7 Hospital Information System SQL Injection via ck_config

Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL commands by manipulating the ckconfig cookie parameter. Attackers can inject malicious SQL through the ckconfig cookie in multiple endpoints including login.php, indexframe.php...

8.8CVSS0.00262EPSS
Exploits0References2
EUVD
EUVDadded 2026/06/04 1:22 p.m.6 views

EUVD-2019-20164

Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL commands by manipulating the ckconfig cookie parameter. Attackers can inject malicious SQL through the ckconfig cookie in multiple endpoints including login.php, indexframe.php...

8.8CVSS6.1AI score0.00262EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 1:22 p.m.10 views

CVE-2019-25728

Care2x 2.7 Hospital Information System is affected by SQL injection via the ck_config cookie parameter. The vulnerability allows unauthenticated attackers to inject arbitrary SQL through endpoints such as login.php, indexframe.php, and various module files, enabling extraction of sensitive databa...

8.8CVSS6.1AI score0.00262EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 1:22 p.m.10 views

CVE-2019-25728 Care2x 2.7 Hospital Information System SQL Injection via ck_config

Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL commands by manipulating the ckconfig cookie parameter. Attackers can inject malicious SQL through the ckconfig cookie in multiple endpoints including login.php, indexframe.php...

8.8CVSS6.1AI score0.00262EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/06/04 12:0 a.m.14 views

PT-2026-46198

Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL commands by manipulating the ck config cookie parameter. Attackers can inject malicious SQL through the ck config cookie in multiple endpoints including login.php,...

8.8CVSS6.1AI score0.00262EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/06/04 12:0 a.m.4 views

Care2x SQL注入漏洞

Care2x is a hospital information management system developed by Care2x Corporation. Version 2.7 of Care2x contains an SQL injection vulnerability. This vulnerability stems from improper handling of the ckconfig cookie parameter, which may allow unauthenticated attackers to execute arbitrary SQL...

8.8CVSS6.2AI score0.00262EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2021-22972

Malware in sbrugna...

5.4CVSS5.6AI score0.00652EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-22971

Malware in sbrugna...

9.8CVSS9.2AI score0.01852EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2007-5394

Malware in sbrugna...

7.5CVSS6.4AI score0.02733EPSS
Exploits1References14
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2007-1568

Malware in sbrugna...

5CVSS6.4AI score0.01064EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/05/22 9:13 p.m.7 views

CVE-2021-36351

SQL Injection Vulnerability in Care2x Open Source Hospital Information Management 2.7 Alpha via the 1 pday, 2 pmonth, and 3 pyear parameters in GET requests sent to /modules/nursing/nursing-station.php...

9.8CVSS8.2AI score0.01852EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 9:12 p.m.13 views

CVE-2021-36352

Stored cross-site scripting XSS vulnerability in Care2x Hospital Information Management 2.7 Alpha. The vulnerability has found POST requests in /modules/registrationadmission/patientregister.php page with "namemiddle", "addrstr", "station", "namemaiden", "name2", "name3" parameters...

5.4CVSS5.7AI score0.00652EPSS
Exploits1References1
OSV
OSVadded 2021/08/26 2:15 p.m.3 views

CVE-2021-36352

Stored cross-site scripting XSS vulnerability in Care2x Hospital Information Management 2.7 Alpha. The vulnerability has found POST requests in /modules/registrationadmission/patientregister.php page with "namemiddle", "addrstr", "station", "namemaiden", "name2", "name3" parameters...

5.4CVSS6AI score0.00652EPSS
Exploits1References2
NVD
NVDadded 2021/08/26 2:15 p.m.30 views

CVE-2021-36352

Stored cross-site scripting XSS vulnerability in Care2x Hospital Information Management 2.7 Alpha. The vulnerability has found POST requests in /modules/registrationadmission/patientregister.php page with "namemiddle", "addrstr", "station", "namemaiden", "name2", "name3" parameters...

5.4CVSS0.00652EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2021/08/26 2:15 p.m.2 views

CVE-2021-36352

Stored cross-site scripting XSS vulnerability in Care2x Hospital Information Management 2.7 Alpha. The vulnerability has found POST requests in /modules/registrationadmission/patientregister.php page with "namemiddle", "addrstr", "station", "namemaiden", "name2", "name3" parameters...

5.4CVSS5AI score0.00652EPSS
Exploits1References3
Prion
Prionadded 2021/08/26 2:15 p.m.13 views

Cross site scripting

Stored cross-site scripting XSS vulnerability in Care2x Hospital Information Management 2.7 Alpha. The vulnerability has found POST requests in /modules/registrationadmission/patientregister.php page with "namemiddle", "addrstr", "station", "namemaiden", "name2", "name3" parameters...

3.5CVSS5.3AI score0.00652EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2021/08/26 1:23 p.m.42 views

CVE-2021-36352

CVE-2021-36352 : Stored cross-site scripting (XSS) vulnerability in Care2x Hospital Information Management 2.7 Alpha. The issue arises from POST requests to /modules/registration_admission/patient_register.php that include parameters such as name_middle, addr_str, station, name_maiden, name_2, an...

5.4CVSS5.2AI score0.00652EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2021/08/26 1:23 p.m.33 views

CVE-2021-36352

Stored cross-site scripting XSS vulnerability in Care2x Hospital Information Management 2.7 Alpha. The vulnerability has found POST requests in /modules/registrationadmission/patientregister.php page with "namemiddle", "addrstr", "station", "namemaiden", "name2", "name3" parameters...

5.5AI score0.00652EPSS
Exploits1References2
Rows per page
Query Builder