98 matches found
Sql injection
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\appointment-history.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
Sql injection
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\edit-profile.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
Sql injection
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\checkavailability.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
Sql injection
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\user-login.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
Sql injection
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\admin\betweendates-detailsreports.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
Sql injection
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\book-appointment.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
Sql injection
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\forgot-password.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22170
CVE-2020-22170 affects PHPGurukul Hospital Management System v4.0. A SQL injection vulnerability exists in hms\get_doctor.php that allows remote unauthenticated attackers to extract sensitive data from the database. Root cause is unsafe handling of user input in the SQL query. Affected component ...
CVE-2020-22170
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\getdoctor.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22164
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\checkavailability.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22165
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\user-login.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22166
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\forgot-password.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22168
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\change-emaild.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22171
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\registration.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22171
PHPGurukul Hospital Management System v4.0 is affected by a SQL injection in hms\registration.php, exploitable by remote unauthenticated users to obtain sensitive DB information. Multiple sources corroborate the vulnerability in PHPGurukul Hospital Management System 4.0. Exploitation details are ...
CVE-2020-22172
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\getdoctor.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22173
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\edit-profile.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22174
PHPGurukul Hospital Management System v4.0 contains a SQL injection in hms\book-appointment.php that allows remote unauthenticated access to obtain sensitive database information. This is confirmed across multiple sources (RH, CNVD/CNNVD, CNVD, CVE records, and PT-2021-10739) with no published pa...
CVE-2020-22174
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\book-appointment.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...
CVE-2020-22175
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\admin\betweendates-detailsreports.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...