CodeAstro Complaint Management System 安全漏洞

CodeAstro Complaint Management System is a complaint management system from CodeAstro. A security vulnerability exists in CodeAstro Complaint Management System v1.0, which stems from an IDOR vulnerability that can be exploited to execute arbitrary code and obtain sensitive information by modifyin...

CVE-2024-11678

A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /backend/doc/hisdocregisterpatient.php. The manipulation of the argument...

CVE-2024-11678

A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /backend/doc/hisdocregisterpatient.php. The manipulation of the argument...

CVE-2024-11677

A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /backend/admin/hisadminaddvendor.php of the component Add Vendor Details Page. The manipulation of the argument...

CVE-2024-11677

A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /backend/admin/hisadminaddvendor.php of the component Add Vendor Details Page. The manipulation of the argument...

CVE-2024-11678

CodeAstro Hospital Management System 1.0 is affected by a cross-site scripting vulnerability in /backend/doc/his_doc_register_patient.php. The issue arises from manipulating the parameters pat_fname, pat_ailment, pat_lname, pat_age, pat_dob, pat_number, pat_phone, pat_type, and pat_addr, allowing...

CVE-2024-11678 CodeAstro Hospital Management System his_doc_register_patient.php cross site scripting

A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /backend/doc/hisdocregisterpatient.php. The manipulation of the argument...

CVE-2024-11678 CodeAstro Hospital Management System his_doc_register_patient.php cross site scripting

A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /backend/doc/hisdocregisterpatient.php. The manipulation of the argument...

CVE-2024-11676

A vulnerability was found in CodeAstro Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /backend/admin/hisadminaddlabequipment.php of the component Add Laboratory Equipment Page. The manipulation of the argument...

CVE-2024-11676

A vulnerability was found in CodeAstro Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /backend/admin/hisadminaddlabequipment.php of the component Add Laboratory Equipment Page. The manipulation of the argument...

CVE-2024-11675

A vulnerability has been found in CodeAstro Hospital Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /backend/admin/hisadminregisterpatient.php of the component Add Patient Details Page. The manipulation of the argument...

CVE-2024-11675

A vulnerability has been found in CodeAstro Hospital Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /backend/admin/hisadminregisterpatient.php of the component Add Patient Details Page. The manipulation of the argument...

CVE-2024-11677 CodeAstro Hospital Management System Add Vendor Details Page his_admin_add_vendor.php cross site scripting

A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /backend/admin/hisadminaddvendor.php of the component Add Vendor Details Page. The manipulation of the argument...

CVE-2024-11677

CVE-2024-11677 concerns CodeAstro Hospital Management System 1.0. The vulnerability affects the Add Vendor Details Page, specifically the file path /backend/admin/his_admin_add_vendor.php, where manipulation of the parameters v_name, v_adr, v_number, v_email, v_phone, and v_desc can trigger a cro...

CVE-2024-11677 CodeAstro Hospital Management System Add Vendor Details Page his_admin_add_vendor.php cross site scripting

A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /backend/admin/hisadminaddvendor.php of the component Add Vendor Details Page. The manipulation of the argument...

CVE-2024-11676 CodeAstro Hospital Management System Add Laboratory Equipment Page his_admin_add_lab_equipment.php cross site scripting

A vulnerability was found in CodeAstro Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /backend/admin/hisadminaddlabequipment.php of the component Add Laboratory Equipment Page. The manipulation of the argument...

CVE-2024-11676 CodeAstro Hospital Management System Add Laboratory Equipment Page his_admin_add_lab_equipment.php cross site scripting

A vulnerability was found in CodeAstro Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /backend/admin/hisadminaddlabequipment.php of the component Add Laboratory Equipment Page. The manipulation of the argument...

CVE-2024-11676

CVE-2024-11676 affects CodeAstro Hospital Management System 1.0. Affected component: /backend/admin/his_admin_add_lab_equipment.php. The vulnerability arises from manipulation of the parameters eqp_code, eqp_name, eqp_vendor, eqp_desc, eqp_dept, eqp_status, and eqp_qty, leading to cross-site scri...

CVE-2024-11674

A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management System 1.0. Affected is an unknown function of the file /backend/doc/hisdocupdate-account.php. The manipulation of the argument docdpic leads to unrestricted upload. It is possible to launch the attack...

CVE-2024-11674

A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management System 1.0. Affected is an unknown function of the file /backend/doc/hisdocupdate-account.php. The manipulation of the argument docdpic leads to unrestricted upload. It is possible to launch the attack...