157 matches found
CVE-2023-1056
CVE-2023-1056 affects SourceCodester Doctors Appointment System v1.0, specifically the vulnerable code path in /edoc/doctor/patient.php where manipulating the search12 parameter enables SQL injection. The issue is exploitable remotely and the exploit has been publicly disclosed. Multiple connecte...
CVE-2023-1056 SourceCodester Doctors Appointment System patient.php sql injection
A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /edoc/doctor/patient.php. The manipulation of the argument search12 leads to sql injection. The attack can be launch...
PT-2023-16730 · Sourcecodester · Sourcecodester Doctors Appointment System
Name of the Vulnerable Software and Affected Versions: SourceCodester Doctors Appointment System version 1.0 Description: A critical issue has been found in the Parameter Handler component of the /admin/patient.php file, where the manipulation of the search argument leads to sql injection. This...
PT-2023-16726 · Sourcecodester · Sourcecodester Doctors Appointment System
Name of the Vulnerable Software and Affected Versions: SourceCodester Doctors Appointment System version 1.0 Description: A critical vulnerability was found in the SourceCodester Doctors Appointment System. This issue affects the file /admin/doctors.php of the component Parameter Handler. The...
Doctors Appointment System SQL注入漏洞
Doctors Appointment System is a doctor appointment system from SourceCodester. An injection vulnerability exists in Doctors Appointment System version 1.0, which stems from a security issue with unknown code in the file /admin/doctors.php of the component Parameter Handler, which causes an sql...
PT-2023-16723 · Sourcecodester · Sourcecodester Doctors Appointment System
Name of the Vulnerable Software and Affected Versions: SourceCodester Doctors Appointment System version 1.0 Description: A critical issue has been found in the system, affecting an unknown functionality of the file /edoc/doctor/patient.php. The manipulation of the search12 argument leads to SQL...
PT-2023-16729 · Sourcecodester · Sourcecodester Doctors Appointment System
Name of the Vulnerable Software and Affected Versions: SourceCodester Doctors Appointment System version 1.0 Description: A critical issue was found in the Parameter Handler component of the file /admin/add-new.php, where the manipulation of the email argument leads to sql injection. This issue c...
Doctors Appointment System SQL注入漏洞
Doctors Appointment System is a doctor appointment system from SourceCodester. An injection vulnerability exists in Doctors Appointment System version 1.0, which stems from unknown processing in the file /admin/edit-doc.php, resulting in an sql injection via the parameter oldmail...
SourceCodester Doctors Appointment System SQL注入漏洞
SourceCodester Doctor Appointment System is an application from SourceCodester USA. It provides an appointment scheduling feature. A SQL injection vulnerability exists in the SourceCodester Doctors Appointment System version 1.0, which originates from a security issue with an unknown function in...
charlottebioidenticalhormonedoctors.com Cross Site Scripting vulnerability OBB-3011906
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2022-36201
Doctor’s Appointment System v1.0 is vulnerable to Blind SQLi via settings.php...
Doctor’s Appointment System 跨站脚本漏洞
Doctor's Appointment System is a doctor's appointment system by Hashen Udara, an individual developer. A security vulnerability exists in Doctor's Appointment System version 1.0, which stems from its admin panel allowing an attacker to steal a cookie to take over the administrator account...
CVE-2022-36543
Edoc-doctor-appointment-system v1.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /patient/doctors.php...
CVE-2022-36543
Edoc-doctor-appointment-system v1.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /patient/doctors.php...
CVE-2022-36543
Edoc-doctor-appointment-system v1.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /patient/doctors.php...
PT-2022-23455
Name of the Vulnerable Software and Affected Versions Edoc-doctor-appointment-system version 1.0.1 Description The Edoc-doctor-appointment-system contains a SQL injection issue via the id parameter at the "/patient/doctors.php" API endpoint. Recommendations For Edoc-doctor-appointment-system...
deltafamilydoctors.com.au Cross Site Scripting vulnerability OBB-2830780
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
texaseyedoctors.com Cross Site Scripting vulnerability OBB-2779792
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
footdoctorswatsonville.com Cross Site Scripting vulnerability OBB-2740111
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2022-32338
Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/doctors/managedoctor.php?id=...