CVE-2025-7153 CodeAstro Simple Hospital Management System POST Parameter doctor.html cross site scripting

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...

CVE-2025-7153

CodeAstro Simple Hospital Management System 1.0 is affected by a remote cross-site scripting (XSS) vulnerability in the POST Parameter Handler, triggered by manipulating the First Name, Last Name, or Address arguments in /doctor.html. The issue is exploitable remotely and has been disclosed publi...

CVE-2025-7153 CodeAstro Simple Hospital Management System POST Parameter doctor.html cross site scripting

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...

PT-2025-28273 · Codeastro · Codeastro Hospital Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro Simple Hospital Management System version 1.0 Description: A problematic issue was found in the CodeAstro Simple Hospital Management System, affecting an unknown functionality of the file /doctor.html, specifically the POST Paramete...

CVE-2025-7148

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7148

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7148 CodeAstro Simple Hospital Management System POST Parameter patient.html cross site scripting

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7148

CVE-2025-7148 concerns CodeAstro Simple Hospital Management System 1.0. The issue affects an unknown function within the file /patient.html of the POST Parameter Handler, where input manipulation leads to cross-site scripting. The vulnerability can be exploited remotely and multiple parameters ma...

CVE-2025-7148 CodeAstro Simple Hospital Management System POST Parameter patient.html cross site scripting

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7147

A vulnerability has been found in CodeAstro Patient Record Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack can be launched remotely. The...

CVE-2025-7147

A vulnerability has been found in CodeAstro Patient Record Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack can be launched remotely. The...

CVE-2025-7147 CodeAstro Patient Record Management System login.php sql injection

A vulnerability has been found in CodeAstro Patient Record Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack can be launched remotely. The...

CVE-2025-7147

CVE-2025-7147 affects CodeAstro Patient Record Management System 1.0. The vulnerability exists in the login functionality (file /login.php) where manipulating the uname parameter triggers SQL injection. It can be exploited remotely and, per sources, the exploit has been disclosed publicly. Multip...

CVE-2025-7147 CodeAstro Patient Record Management System login.php sql injection

A vulnerability has been found in CodeAstro Patient Record Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack can be launched remotely. The...

CVE-2025-7133

A vulnerability classified as problematic has been found in CodeAstro Online Movie Ticket Booking System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

CVE-2025-7133

A vulnerability classified as problematic has been found in CodeAstro Online Movie Ticket Booking System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

CVE-2025-7133

CVE-2025-7133 affects CodeAstro Online Movie Ticket Booking System 1.0. The vulnerability is CSRF in an unknown part of the system, with remote initiation and a public exploit. Multiple sources report the issue with PoC/proof-of-concept details and no confirmed, published fix within the provided ...

CVE-2025-7133 CodeAstro Online Movie Ticket Booking System cross-site request forgery

A vulnerability classified as problematic has been found in CodeAstro Online Movie Ticket Booking System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

CVE-2025-7133 CodeAstro Online Movie Ticket Booking System cross-site request forgery

A vulnerability classified as problematic has been found in CodeAstro Online Movie Ticket Booking System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

PT-2025-28267 · Unknown · Codeastro Patient Record Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro Patient Record Management System version 1.0 Description: A critical issue has been discovered, affecting an unknown functionality of the file /login.php. The manipulation of the uname argument leads to SQL injection. This issue can...