CVE-2024-10350 code-projects Hospital Management System add-doctor.php sql injection

A vulnerability was found in code-projects Hospital Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/add-doctor.php. The manipulation of the argument docname leads to sql injection. The attack can be initiated remotely. The exploi...

CVE-2024-10350 code-projects Hospital Management System add-doctor.php sql injection

A vulnerability was found in code-projects Hospital Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/add-doctor.php. The manipulation of the argument docname leads to sql injection. The attack can be initiated remotely. The exploi...

CVE-2024-10350

CVE-2024-10350 concerns the code-projects Hospital Management System 1.0. The vulnerability is a SQL injection in the file /admin/add-doctor.php caused by unsafely manipulated the parameter docname . It is a remote issue with public exploit disclosure, and multiple sources classify the impact as ...

CVE-2024-10199 code-projects Pharmacy Management System Manage Medicines Page manage_medicine.php cross site scripting

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /managemedicine.php of the component Manage Medicines Page. The manipulation of the argument...

CVE-2024-10196

A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /addnewinvoice.php. The manipulation of the argument text leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-10196 code-projects Pharmacy Management System add_new_invoice.php sql injection

A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /addnewinvoice.php. The manipulation of the argument text leads to sql injection. The attack may be initiated remotely. The exploit has been...

Code-Projects Pharmacy Management System 安全漏洞

Code-Projects Pharmacy Management System is an open source pharmacy management system from Code-Projects. A security vulnerability exists in Code-Projects Pharmacy Management System version 1.0, which stems from the parameter name/address/doctoraddress/suppliersname in the file /managemedicine.ph...

CVE-2024-10171 code-projects Blood Bank System massage.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Blood Bank System up to 1.0. Affected is an unknown function of the file /admin/massage.php. The manipulation of the argument bid leads to sql injection. It is possible to launch the attack remotely. The exploit has bee...

CVE-2024-10170 code-projects Hospital Management System get_doctor.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Hospital Management System 1.0. This issue affects some unknown processing of the file getdoctor.php. The manipulation of the argument specilizationid leads to sql injection. The attack may be initiated remotely. T...

CVE-2024-10169 code-projects Hospital Management System change-password.php sql injection

A vulnerability classified as critical was found in code-projects Hospital Management System 1.0. This vulnerability affects unknown code of the file change-password.php. The manipulation of the argument cpass leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-10169

The CVE-2024-10169 entry concerns code-projects Hospital Management System 1.0. The vulnerability resides in the change-password.php page, where the cpass parameter is vulnerable to SQL injection due to lack of input validation. Exploitation is possible remotely, and public disclosures have occur...

Code-Projects Blood Bank System SQL注入漏洞

Code-Projects Blood Bank System is a Code-Projects open source blood bank management system. A SQL injection vulnerability exists in Code-Projects Blood Bank System version 1.0, which originates from a SQL injection vulnerability in the bid parameter of the /admin/massage.php page...

CVE-2024-10142 code-projects Blood Bank System viewrequest.php cross site scripting

A vulnerability has been found in code-projects Blood Bank System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /viewrequest.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2024-10140 code-projects Pharmacy Management System manage_supplier.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. Affected by this issue is some unknown functionality of the file /managesupplier.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2024-10140 code-projects Pharmacy Management System manage_supplier.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. Affected by this issue is some unknown functionality of the file /managesupplier.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2024-10140

The CVE-2024-10140 entry affects code-projects’ Pharmacy Management System 1.0, with the vulnerability located in /manage_supplier.php. The root cause is an SQL injection caused by manipulating the id parameter, enabling remote exploitation. Public exploit details exist (e.g., a GitHub exploit ta...

CVE-2024-10139 code-projects Pharmacy Management System add_new_supplier.php sql injection

A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /addnewsupplier.php. The manipulation of the argument name leads to sql injection. The attack can be launched remotely. The...

CVE-2024-10138 code-projects Pharmacy Management System add_new_purchase.php sql injection

A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. Affected is an unknown function of the file /addnewpurchase.php?action=issupplier. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-10136

A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /manageinvoice.php. The manipulation of the argument invoicenumber leads to sql injection. The attack can be initiated remotely. The...

PT-2024-16084 · Code Projects · Hospital Management System

Name of the Vulnerable Software and Affected Versions: code-projects Hospital Management System version 1.0 Description: A critical issue has been found in the Hospital Management System, affecting the processing of the file get doctor.php. The manipulation of the specilizationid argument leads t...