18 matches found
CVE-2025-56212
phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in add-doctor.php via the docname parameter...
Hospital Management System add-doctor.php File SQL Injection Vulnerability
Hospital Management System is a PHP and MySQL based hospital management system. Hospital Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the docname parameter of add-doctor.php. No details of the...
CVE-2025-56212
phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in add-doctor.php via the docname parameter...
CVE-2025-56212
phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in add-doctor.php via the docname parameter...
PT-2025-34667 · Unknown · Phpgurukul Hospital Management System
Name of the Vulnerable Software and Affected Versions: phpgurukul Hospital Management System version 4.0 Description: The phpgurukul Hospital Management System is susceptible to SQL Injection in the add-doctor.php file through the docname parameter. Recommendations: As a temporary workaround,...
CVE-2025-56212
Summary: CVE-2025-56212 affects phpgurukul Hospital Management System 4.0. The vulnerability is an SQL Injection in the add-doctor.php file through the docname parameter caused by insufficient input validation. The CVSS 3.1 metrics indicate a critical impact (base score 9.8) with attacker’s acces...
CVE-2024-46238
Multiple Cross Site Scripting XSS vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the docname parameter in /admin/add-doctor.php and /admin/edit-doctor.php...
Hospital Management System add-doctor.php File SQL Injection Vulnerability
Hospital Management System a hospital management system. Hospital Management System has a SQL injection vulnerability that originates from the parameter docname in the file /admin/add-doctor.php that can lead to SQL injection. No details of the vulnerability are available at this time...
Code-Projects Hospital Management System SQL注入漏洞
Hospital Management System a hospital management system. Hospital Management System has a SQL injection vulnerability that originates from the parameter docname in the file /admin/add-doctor.php that can lead to SQL injection. No details of the vulnerability are available at this time...
CVE-2024-46238
Multiple Cross Site Scripting XSS vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the docname parameter in /admin/add-doctor.php and /admin/edit-doctor.php...
CVE-2024-46239
Multiple cross-site scripting vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the docname parameter in /doctor/edit-profile.php and adminremark parameter in /admin/query-details.php...
CVE-2024-46239
Multiple cross-site scripting vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the docname parameter in /doctor/edit-profile.php and adminremark parameter in /admin/query-details.php...
CVE-2024-46238
Multiple Cross Site Scripting XSS vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the docname parameter in /admin/add-doctor.php and /admin/edit-doctor.php...
PT-2024-31930 · Unknown · Phpgurukul Hospital Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 4.0 Description: The issue concerns cross-site scripting vulnerabilities in the PHPGurukul Hospital Management System. These vulnerabilities exist via the docname parameter in...
CVE-2024-46238
Multiple Cross Site Scripting XSS vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the docname parameter in /admin/add-doctor.php and /admin/edit-doctor.php...
CVE-2024-46239
Multiple cross-site scripting vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the docname parameter in /doctor/edit-profile.php and adminremark parameter in /admin/query-details.php...
CVE-2024-46238
PHPGurukul Hospital Management System 4.0 contains multiple Cross-Site Scripting (XSS) vulnerabilities exposed via the docname parameter in /admin/add-doctor.php and /admin/edit-doctor.php. The issue affects user-supplied input processed in those endpoints, enabling potential script injection. Th...
CVE-2023-7136
A vulnerability classified as problematic was found in code-projects Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /main/doctype.php of the component Document Type Handler. The manipulation of the argument docname with the input " leads to...