Lucene search
+L

24 matches found

Nuclei
Nuclei
added 10 hours ago55 views

Hospital Management System 1.0 - Cross-Site Scripting

Hospital Management System 1.0 contains a cross-site scripting vulnerability via the searchdata parameter in doctor/search.php and patient-search.php. id: CVE-2021-39411 info: name: Hospital Management System 1.0 - Cross-Site Scripting author: arafatansari severity: high description: | Hospital...

6.1CVSS5.8AI score0.0089EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-18402

Malware in sbrugna...

5.4CVSS5.5AI score0.00554EPSS
Exploits4References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-8769

Malware in sbrugna...

9.8CVSS9.5AI score0.0305EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/08/09 12:23 a.m.5 views

CVE-2023-41532

Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the doctorcontact parameter in doctorsearch.php...

8.8CVSS8AI score0.00302EPSS
Exploits0References1
OSV
OSV
added 2025/06/24 4:15 p.m.4 views

CVE-2025-6570

A vulnerability, which was classified as critical, has been found in PHPGurukul Hospital Management System 4.0. Affected by this issue is some unknown functionality of the file /doctor/search.php. The manipulation of the argument searchdata leads to sql injection. The attack may be launched...

8.8CVSS5.8AI score0.0037EPSS
Exploits1References5
OSV
OSV
added 2025/06/21 3:15 p.m.5 views

CVE-2025-6408

A vulnerability has been found in Campcodes Online Hospital Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /doctor/search.php. The manipulation of the argument searchdata leads to sql injection. The attack can be initiated remotely. The explo...

9.8CVSS5.8AI score0.00448EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/06/21 12:0 a.m.5 views

CampCodes Online Hospital Management System 注入漏洞

CampCodes Online Hospital Management System is an online hospital management system from CampCodes, Inc. An injection vulnerability exists in CampCodes Online Hospital Management System version 1.0, which originates from a SQL injection due to a misbehavior of the searchdata parameter in the file...

9.8CVSS7.8AI score0.00448EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/11/04 12:0 a.m.4 views

PT-2024-16565 · Unknown · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 4.0 Description: A vulnerability was found in the PHPGurukul Hospital Management System, affecting some unknown processing of the file hms/doctor/search.php. The manipulation of the argument...

5.1CVSS4.1AI score0.00403EPSS
Exploits1References15
Cvelist
Cvelist
added 2021/11/05 2:32 p.m.21 views

CVE-2021-39411

Multiple Cross Site Scripting XSS vulnerabilities exist in PHPGurukul Hospital Management System 4.0 via the 1 searchdata parameter in a doctor/search.php and b admin/patient-search.php, and the 2 fromdate and 3 todate parameters in admin/betweendates-detailsreports.php...

6.3AI score0.0089EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/11/05 12:0 a.m.6 views

PT-2021-22580 · Unknown · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System version 4.0 Description: Multiple Cross Site Scripting XSS vulnerabilities exist in the system. The issue is related to the searchdata parameter in "/doctor/search.php" and "/admin/patient-search.php" API...

6.1CVSS6.1AI score0.0089EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/11/05 12:0 a.m.4 views

PHPGurukul Hospital Management System 跨站脚本漏洞

PHPGurukul Hospital Management System is a PHP and MySQL based hospital management system. PHPGurukul Hospital Management System 4.0 has a security vulnerability that can be exploited by an attacker to conduct xss attacks using multiple parameters. The parameters that can be exploited are 1...

6.1CVSS6.3AI score0.0089EPSS
Exploits0References2
Prion
Prion
added 2020/10/08 1:15 p.m.17 views

Design/Logic Flaw

PHPGurukul hospital-management-system-in-php 4.0 allows XSS via admin/patient-search.php, doctor/search.php, book-appointment.php, doctor/appointment-history.php, or admin/appointment-history.php...

3.5CVSS5.2AI score0.00617EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/10/08 12:0 a.m.8 views

PT-2020-16054 · Phpgurukul · Phpgurukul Hospital-Management-System-In-Php

Name of the Vulnerable Software and Affected Versions: PHPGurukul hospital-management-system-in-php version 4.0 Description: The issue allows for XSS attacks via several endpoints, including "admin/patient-search.php", "doctor/search.php", "book-appointment.php", "doctor/appointment-history.php",...

5.4CVSS5.3AI score0.00617EPSS
Exploits1References3
CNVD
CNVD
added 2018/02/09 12:0 a.m.5 views

PHP Scripts Mall Doctor Search Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Doctor Search Script is a PHP based online doctor search website script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Doctor Search Script version 1.0.2. A remote attacker can exploit this vulnerability to inject arbitrary web script o...

5.4CVSS6.2AI score0.00554EPSS
Exploits4References1
Prion
Prion
added 2018/02/07 9:29 p.m.15 views

Cross site scripting

PHP Scripts Mall Doctor Search Script 1.0.2 has Stored XSS via an arbitrary profile field...

3.5CVSS5.3AI score0.00554EPSS
Exploits4References1Affected Software1
OSV
OSV
added 2018/02/07 9:29 p.m.4 views

CVE-2018-6655

PHP Scripts Mall Doctor Search Script 1.0.2 has Stored XSS via an arbitrary profile field...

5.4CVSS5.9AI score0.00554EPSS
Exploits4References1
Cvelist
Cvelist
added 2018/02/07 9:0 p.m.32 views

CVE-2018-6655

PHP Scripts Mall Doctor Search Script 1.0.2 has Stored XSS via an arbitrary profile field...

5.4AI score0.00554EPSS
Exploits4References1
CVE
CVE
added 2018/02/07 9:0 p.m.48 views

CVE-2018-6655

The CVE-2018-6655 entry affects PHP Scripts Mall Doctor Search Script 1.0.2, describing a Stored Cross-Site Scripting vulnerability via an arbitrary profile field. Public artifacts (exploit-db, 0day, CNVD/NVD mirrors) corroborate that an attacker could inject arbitrary script/HTML through profile...

5.4CVSS5.2AI score0.00554EPSS
Exploits4References1Affected Software1
CNVD
CNVD
added 2017/12/15 12:0 a.m.4 views

PHP Scripts Mall Doctor Search Script SQL Injection Vulnerability

PHP Scripts Mall Doctor Search Script is a PHP based online doctor search website script by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Doctor Search Script version 1.0. The vulnerability can be exploited by a remote attacker to inject SQL commands by sending...

9.8CVSS8.4AI score0.0305EPSS
Exploits1References1
OSV
OSV
added 2017/12/13 9:29 a.m.6 views

CVE-2017-17611

Doctor Search Script 1.0 has SQL Injection via the /list city parameter...

9.8CVSS5.8AI score0.0305EPSS
Exploits1References2
Rows per page
Query Builder